Type | URI |
---|---|
Third Party Advisory | https://insert-script.blogspot.com/2020/11/imagemagick-shell-injection-via-pdf.html |
Exploit | https://github.com/ImageMagick/ImageMagick/discussions/2851 |
Mailing List | https://lists.debian.org/debian-lts-announce/2021/01/msg00010.html |
Third Party Advisory | https://security.gentoo.org/glsa/202101-36 |
CPE URI | Source package | Min version | Max version |
---|---|---|---|
cpe:2.3:a:imagemagick:imagemagick:*:*:*:*:*:*:*:* |
imagemagick | >= 6.9.8-1 | < 6.9.11-40 |
cpe:2.3:a:imagemagick:imagemagick:*:*:*:*:*:*:*:* |
imagemagick | >= 7.0.5-3 | < 7.0.10-40 |
Source package | Branch | Version | Maintainer | Status |
---|---|---|---|---|
imagemagick | 3.10-main | 7.0.8.68-r0 | Natanael Copa <ncopa@alpinelinux.org> | possibly vulnerable |