CVE-2020-27769
LOWImageMagick < 7.0.9-0 - Integer Overflow in Quantize Component
Title source: llmDescription
In ImageMagick versions before 7.0.9-0, there are outside the range of representable values of type 'float' at MagickCore/quantize.c.
References (2)
Core 2
Core References
Mailing List mailing-list
https://lists.debian.org/debian-lts-announce/2023/03/msg00008.html
Issue Tracking, Patch, Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1894690
Scores
CVSS v3
3.3
EPSS
0.0009
EPSS Percentile
24.6%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
Details
CWE
CWE-190
Status
published
Products (5)
fedoraproject/fedora
33
imagemagick/imagemagick
< 7.0.9-0
redhat/enterprise_linux_desktop
5.0
redhat/enterprise_linux_desktop
6.0
redhat/enterprise_linux_desktop
7.0
Published
May 14, 2021
Tracked Since
Feb 18, 2026