CVE-2016-5842

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2016-5842
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-5842.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2016-5842
Downstream
Related
Published
2016-12-13T15:59:07.997Z
Modified
2026-06-18T04:03:24.188182147Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
Summary
[none]
Details

MagickCore/property.c in ImageMagick before 7.0.2-1 allows remote attackers to obtain sensitive memory information via vectors involving the q variable, which triggers an out-of-bounds read.

Database specific 
{
    "unresolved_ranges": [
        {
            "vendor_product": "oracle:solaris",
            "extracted_events": [
                {
                    "last_affected": "10"
                },
                {
                    "last_affected": "11.3"
                }
            ],
            "source": "CPE_STRING",
            "cpes": [
                "cpe:2.3:o:oracle:solaris:10:*:*:*:*:*:*:*",
                "cpe:2.3:o:oracle:solaris:11.3:*:*:*:*:*:*:*"
            ]
        }
    ]
}
References

Affected packages

Git / github.com/imagemagick/imagemagick

Affected ranges

Type
GIT
Repo
https://github.com/imagemagick/imagemagick
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
01588fbdd5469847e919b472e8bfbd69bef0d652
Fixed
d8ab7f046587f2e9f734b687ba7e6e10147c294b
Database specific 
{
    "cpe": "cpe:2.3:a:imagemagick:imagemagick:*:*:*:*:*:*:*:*",
    "source": [
        "CPE_RANGE",
        "REFERENCES"
    ],
    "extracted_events": [
        {
            "introduced": "7.0.0-0"
        },
        {
            "fixed": "7.0.2-1"
        }
    ]
}

Affected versions

7.*
7.0.1-0
7.0.1-1
7.0.1-10
7.0.1-2
7.0.1-3
7.0.1-4
7.0.1-5
7.0.1-6
7.0.1-7
7.0.1-8
7.0.1-9
7.0.2-0

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-5842.json"

Git / github.com/imagemagick/imagemagick6

Affected ranges

Type
GIT
Repo
https://github.com/imagemagick/imagemagick6
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
d81c0d0ce4b7adbab89b2d91ef30f1f88de40bea
Database specific 
{
    "cpe": "cpe:2.3:a:imagemagick:imagemagick:*:*:*:*:*:*:*:*",
    "source": "CPE_RANGE",
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "fixed": "6.9.4-10"
        }
    ]
}

Affected versions

6.*
6.9.4-0
6.9.4-1
6.9.4-2
6.9.4-3
6.9.4-4
6.9.4-5
6.9.4-6
6.9.4-7
6.9.4-8
6.9.4-9

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-5842.json"