In GraphicsMagick before 1.3.32, the text filename component allows remote attackers to read arbitrary files via a crafted image because of TranslateTextEx for SVG.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2020-03-18T17:39:30

Updated: 2024-08-04T23:32:55.569Z

Reserved: 2019-06-20T00:00:00

Link: CVE-2019-12921

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2020-03-18T19:15:16.043

Modified: 2022-03-31T17:32:37.707

Link: CVE-2019-12921

cve-icon Redhat

No data.