VulnerableCode Package Details - pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.6%2Bdeb12u3

Search for packages

Vulnerability	Summary	Fixed by
VCID-jr2h-5h6m-aaag Aliases: CVE-2021-20311	A flaw was found in ImageMagick in versions before 7.0.11, where a division by zero in sRGBTransformImage() in the MagickCore/colorspace.c may trigger undefined behavior via a crafted image file that is submitted by an attacker processed by an application using ImageMagick. The highest threat from this vulnerability is to system availability.	8:7.1.1.43+dfsg1-1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-jr2h-5h6m-aaag
Aliases:
CVE-2021-20311

A flaw was found in ImageMagick in versions before 7.0.11, where a division by zero in sRGBTransformImage() in the MagickCore/colorspace.c may trigger undefined behavior via a crafted image file that is submitted by an attacker processed by an application using ImageMagick. The highest threat from this vulnerability is to system availability.

8:7.1.1.43+dfsg1-1
Affected by 2 other vulnerabilities.

Vulnerability	Summary	Aliases
VCID-2qh8-1bv6-aaap	An issue was discovered with ImageMagick 7.1.0-4 via Division by zero in function ReadEnhMetaFile of coders/emf.c.	CVE-2021-40211
VCID-jr2h-5h6m-aaag	A flaw was found in ImageMagick in versions before 7.0.11, where a division by zero in sRGBTransformImage() in the MagickCore/colorspace.c may trigger undefined behavior via a crafted image file that is submitted by an attacker processed by an application using ImageMagick. The highest threat from this vulnerability is to system availability.	CVE-2021-20311
VCID-kvcr-9avn-x3ab	In multispectral MIFF image processing in ImageMagick before 7.1.1-44, packet_size is mishandled (related to the rendering of all channels in an arbitrary order).	CVE-2025-46393
VCID-n8t8-7rkt-v7g8	In MIFF image processing in ImageMagick before 7.1.1-44, image depth is mishandled after SetQuantumFormat is used.	CVE-2025-43965

Vulnerability

Summary

Aliases

VCID-2qh8-1bv6-aaap

An issue was discovered with ImageMagick 7.1.0-4 via Division by zero in function ReadEnhMetaFile of coders/emf.c.

CVE-2021-40211

VCID-jr2h-5h6m-aaag

CVE-2021-20311

VCID-kvcr-9avn-x3ab

In multispectral MIFF image processing in ImageMagick before 7.1.1-44, packet_size is mishandled (related to the rendering of all channels in an arbitrary order).

CVE-2025-46393

VCID-n8t8-7rkt-v7g8

In MIFF image processing in ImageMagick before 7.1.1-44, image depth is mishandled after SetQuantumFormat is used.

CVE-2025-43965

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-06-21T23:06:47.787454+00:00	Debian Importer	Fixing	VCID-kvcr-9avn-x3ab	https://security-tracker.debian.org/tracker/data/json	36.1.3
2025-06-21T10:21:28.965699+00:00	Debian Importer	Fixing	VCID-jr2h-5h6m-aaag	https://security-tracker.debian.org/tracker/data/json	36.1.3
2025-06-20T21:59:51.569799+00:00	Debian Importer	Fixing	VCID-2qh8-1bv6-aaap	https://security-tracker.debian.org/tracker/data/json	36.1.3
2025-06-02T03:15:29.615037+00:00	Debian Importer	Affected by	VCID-jr2h-5h6m-aaag	https://security-tracker.debian.org/tracker/data/json	36.0.0
2025-05-18T03:58:49.844281+00:00	Debian Importer	Fixing	VCID-kvcr-9avn-x3ab	https://security-tracker.debian.org/tracker/data/json	36.0.0
2025-05-17T16:13:50.948361+00:00	Debian Importer	Fixing	VCID-2qh8-1bv6-aaap	https://security-tracker.debian.org/tracker/data/json	36.0.0
2025-05-15T18:24:40.077642+00:00	Debian Importer	Fixing	VCID-jr2h-5h6m-aaag	https://security-tracker.debian.org/tracker/data/json	36.0.0
2025-05-04T05:34:22.572848+00:00	Debian Importer	Fixing	VCID-n8t8-7rkt-v7g8	https://security-tracker.debian.org/tracker/data/json	36.0.0