{ "schema_version": "1.4.0", "id": "GHSA-689w-wq5r-v53p", "modified": "2022-05-14T02:04:38Z", "published": "2022-05-14T02:04:38Z", "aliases": [ "CVE-2014-9844" ], "details": "The ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted image file.", "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "affected": [], "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-9844" }, { "type": "WEB", "url": "https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream&id=36ed9419a68cb1356b1843b48cc12788179cdaee" }, { "type": "WEB", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1343502" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00000.html" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00002.html" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00009.html" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00010.html" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00011.html" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00018.html" }, { "type": "WEB", "url": "http://www.openwall.com/lists/oss-security/2016/06/02/13" }, { "type": "WEB", "url": "http://www.ubuntu.com/usn/USN-3131-1" } ], "database_specific": { "cwe_ids": [ "CWE-125" ], "severity": "MODERATE", "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2017-03-20T16:59:00Z" } }