CVE-2020-27560
LOWImageMagick 7.0.10-34 - Denial of Service via Division by Zero in OptimizeLayerFrames
Title source: llmDescription
ImageMagick 7.0.10-34 allows Division by Zero in OptimizeLayerFrames in MagickCore/layer.c, which may cause a denial of service.
References (4)
Core 4
Core References
Mailing List, Third Party Advisory vendor-advisory
http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00037.html
Mailing List, Third Party Advisory mailing-list
https://lists.debian.org/debian-lts-announce/2021/01/msg00010.html
Mailing List mailing-list
https://lists.debian.org/debian-lts-announce/2023/03/msg00008.html
Patch, Third Party Advisory
https://github.com/ImageMagick/ImageMagick/commit/ef59bd764f88d893f1219fee8ba696a5d3f8c1c4
Scores
CVSS v3
3.3
EPSS
0.0013
EPSS Percentile
31.6%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
Details
CWE
CWE-369
Status
published
Products (3)
debian/debian_linux
9.0
imagemagick/imagemagick
7.0.10-34
opensuse/leap
15.2
Published
Oct 22, 2020
Tracked Since
Feb 18, 2026