CVE-2016-7520

Опубликовано: 20 апр. 2017

Источник: debian

Описание

Heap-based buffer overflow in coders/hdr.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted HDR file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
imagemagick	fixed	8:6.9.6.2+dfsg-2		package

Примечания

https://bugs.launchpad.net/bugs/1537213
https://github.com/ImageMagick/ImageMagick/issues/90
https://github.com/ImageMagick/ImageMagick/commit/14e606db148d6ebcaae20f1e1d6d71903ca4a556
https://www.openwall.com/lists/oss-security/2016/08/07/1

Связанные уязвимости

CVE-2016-7520

CVSS3: 6.5

ubuntu

почти 9 лет назад

Heap-based buffer overflow in coders/hdr.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted HDR file.

CVE-2016-7520

CVSS3: 4

redhat

около 10 лет назад

Heap-based buffer overflow in coders/hdr.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted HDR file.

CVE-2016-7520

CVSS3: 6.5

nvd

почти 9 лет назад

Heap-based buffer overflow in coders/hdr.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted HDR file.

GHSA-4xwj-cq88-97c8

CVSS3: 6.5

github

больше 3 лет назад

Heap-based buffer overflow in coders/hdr.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted HDR file.

openSUSE-SU-2016:2770-1

suse-cvrf

около 9 лет назад

Security update for ImageMagick