CVE-2019-13305

HIGH

Imagemagick - Out-of-Bounds Write

Title source: rule

ImageMagick 7.0.8-50 Q16 has a stack-based buffer overflow at coders/pnm.c in WritePNMImage because of a misplaced strncpy and an off-by-one error.

CVSS v3 7.8

EPSS 0.0013

EPSS Percentile 32.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE

CWE-193 CWE-787

Status published

Products (10)

canonical/ubuntu_linux 16.04

canonical/ubuntu_linux 18.04

canonical/ubuntu_linux 19.04

canonical/ubuntu_linux 19.10

debian/debian_linux 8.0

debian/debian_linux 9.0

debian/debian_linux 10.0

imagemagick/imagemagick 7.0.8-50 q16

opensuse/leap 15.0

opensuse/leap 15.1

Published Jul 05, 2019

Tracked Since Feb 18, 2026