CVE-2023-5349
- Source
- https://cve.org/CVERecord?id=CVE-2023-5349
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-5349.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2023-5349
- Aliases
- Downstream
- Published
- 2023-10-30T20:27:59.972Z
- Modified
- 2026-06-18T03:56:24.597750652Z
- Severity
-
- 5.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVSS Calculator
- Summary
- Draw while calling getdrawinfo()
- Details
-
A memory leak flaw was found in ruby-magick, an interface between Ruby and ImageMagick. This issue can lead to a denial of service (DOS) by memory exhaustion.
- Database specific
{ "cna_assigner": "redhat", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/5xxx/CVE-2023-5349.json", "cwe_ids": [ "CWE-401" ] }- References
-
- https://catalog.redhat.com/software/containers/
- https://lists.debian.org/debian-lts-announce/2023/10/msg00030.html
- https://lists.debian.org/debian-lts-announce/2026/01/msg00003.html
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S3XMQ2KWPYGT447EKPENGXXHKAQ5NUWF/
- https://packages.fedoraproject.org/
- https://access.redhat.com/security/cve/CVE-2023-5349
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/5xxx/CVE-2023-5349.json
- https://nvd.nist.gov/vuln/detail/CVE-2023-5349
- https://bugzilla.redhat.com/show_bug.cgi?id=2247064
- https://github.com/rmagick/rmagick/issues/1401
- https://github.com/rmagick/rmagick/pull/1406
Affected packages
Git / github.com/rmagick/rmagick
Affected ranges
- Type
- GIT
- Repo
- https://github.com/rmagick/rmagick
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
- Database specific
{ "source": "CPE_RANGE", "extracted_events": [ { "introduced": "0" }, { "fixed": "5.3.0" } ], "cpe": "cpe:2.3:a:rmagick:rmagick:*:*:*:*:*:ruby:*:*" }
Affected versions
Other
RMagick_1-10-0
RMagick_1-10-1
RMagick_1-11-0
RMagick_1-11-1
RMagick_1-12-0
RMagick_1-13-0
RMagick_1-14-1
RMagick_1-15-0
RMagick_1-3-0
RMagick_1-4-0
RMagick_1-5-0
RMagick_1-6-0
RMagick_1-7-0
RMagick_1-7-1
RMagick_1-8-0
RMagick_1-8-1
RMagick_1-8-2
RMagick_1-8-3
RMagick_1-9-0
RMagick_1-9-1
RMagick_1-9-2
RMagick_1-9-3
RMagick_2-0-0
RMagick_2-1-0
RMagick_2-10-0
RMagick_2-11-0
RMagick_2-11-1
RMagick_2-12-0
RMagick_2-12-1
RMagick_2-12-2
RMagick_2-13-0
RMagick_2-13-1
RMagick_2-13-2
RMagick_2-13-3
RMagick_2-13-4
RMagick_2-14-0
RMagick_2-15-0
RMagick_2-15-1
RMagick_2-15-2
RMagick_2-15-3
RMagick_2-15-4
RMagick_2-2-0
RMagick_2-3-0
RMagick_2-4-0
RMagick_2-5-0
RMagick_2-5-1
RMagick_2-5-2
RMagick_2-6-0
RMagick_2-7-0
RMagick_2-7-1
RMagick_2-7-2
RMagick_2-8-0
RMagick_2-9-0
RMagick_2-9-1
RMagick_2-9-2
RMagick_3-0-0
RMagick_3-1-0
RMagick_3-2-0
RMagick_4-0-0
RMagick_4-1-0
RMagick_4-1-0-rc1
RMagick_4-1-0-rc2
RMagick_4-1-1
RMagick_4-1-2
RMagick_4-2-0
RMagick_4-2-1
RMagick_4-2-2
RMagick_4-2-3
RMagick_4-2-4
RMagick_4-2-5
RMagick_4-2-6
RMagick_4-3-0
RMagick_5-0-0
RMagick_5-1-0
RMagick_5-2-0
list
v2