Bug 1182335 - (CVE-2021-20241) VUL-0: CVE-2021-20241: ImageMagick: Division by zero in WriteJP2Image() in coders/jp2.c
(CVE-2021-20241)
VUL-0: CVE-2021-20241: ImageMagick: Division by zero in WriteJP2Image() in co...
Status: NEW
Classification: Novell Products
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents
unspecified
Other Other
: P3 - Medium : Normal
: ---
Assigned To: Security Team bot
Security Team bot
https://smash.suse.de/issue/277980/
CVSSv3.1:SUSE:CVE-2021-20241:5.3:(AV:...
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2021-02-16 16:40 UTC by Gianluca Gabrielli
Modified: 2022-09-08 11:20 UTC (History)
1 user (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Gianluca Gabrielli 2021-02-16 16:40:51 UTC
CVE-2021-20241

A flaw was found in ImageMagick in coders/jp2.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. This would most likely lead to an impact to application availability, but could potentially cause other problems related to undefined behavior. This flaw affects ImageMagick versions prior to 7.0.10-62.

References:

https://github.com/ImageMagick/ImageMagick/pull/3177

References:
https://bugzilla.redhat.com/show_bug.cgi?id=1928952
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20241
Comment 1 Gianluca Gabrielli 2021-02-16 16:42:17 UTC
Affected codestreams:

 * SUSE:SLE-15:Update
 * SUSE:SLE-15-SP2:Update

Upstream patch:

 * https://github.com/ImageMagick/ImageMagick/commit/dd33b451c3e01098efad34bbaca2df78d5391dc8.patch
Comment 3 Petr Gajdos 2021-02-23 08:27:20 UTC
There is no testcase.
Comment 4 Petr Gajdos 2021-02-23 11:28:49 UTC
ImageMagick6 change is part of
https://github.com/ImageMagick/ImageMagick6/commit/53cb91b3e7bf95d0e372cbc745e0055ac6054745

However, the part of WriteJP2Image() code is not there in 12,11/ImageMagick.

Note that jp2 coder is part of ImageMagick-extra package which I think we do not support in SLE as far as I can see.
Comment 5 Petr Gajdos 2021-02-23 11:29:40 UTC
Will submit for 15sp2,15/ImageMagick.
Comment 6 Petr Gajdos 2021-02-23 12:14:53 UTC
I believe all fixed.
Comment 8 Swamp Workflow Management 2021-02-25 17:22:01 UTC
SUSE-SU-2021:0605-1: An update that fixes four vulnerabilities is now available.

Category: security (moderate)
Bug References: 1182325,1182335,1182336,1182337
CVE References: CVE-2021-20241,CVE-2021-20243,CVE-2021-20244,CVE-2021-20246
JIRA References: 
Sources used:
SUSE Linux Enterprise Module for Development Tools 15-SP2 (src):    ImageMagick-7.0.7.34-10.12.1
SUSE Linux Enterprise Module for Desktop Applications 15-SP2 (src):    ImageMagick-7.0.7.34-10.12.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 9 Swamp Workflow Management 2021-03-03 14:18:58 UTC
openSUSE-SU-2021:0377-1: An update that fixes four vulnerabilities is now available.

Category: security (moderate)
Bug References: 1182325,1182335,1182336,1182337
CVE References: CVE-2021-20241,CVE-2021-20243,CVE-2021-20244,CVE-2021-20246
JIRA References: 
Sources used:
openSUSE Leap 15.2 (src):    ImageMagick-7.0.7.34-lp152.12.12.1