DEBIAN-CVE-2020-27752

DEBIAN-CVE-2020-27752 PUBLISHED CVSS 7.099999904632568 HIGH

A flaw was found in ImageMagick in MagickCore/quantum-private.h. An attacker who submits a crafted file that is processed by ImageMagick could trigger a heap buffer overflow. This would most likely lead to an impact to application availability, but could potentially lead to an impact to data integrity as well. This flaw affects ImageMagick versions prior to 7.0.9-0.

Risk Scores

CVSS 3.1

7.099999904632568

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H

Affected Products

Vendor	Product	Versions
Debian:11	imagemagick	0, 0, 0
Debian:13	imagemagick	0, 0, 0
Debian:12	imagemagick	0, 0, 0
Debian:14	imagemagick	0, 0, 0

Timeline

Dec 8, 2020 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2020-27752 advisory

Open in Interactive Console →