CVE-2016-7525

Опубликовано: 20 апр. 2017

Источник: debian

EPSS Низкий

Описание

Heap-based buffer overflow in coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
imagemagick	fixed	8:6.9.6.2+dfsg-2		package
imagemagick	not-affected		wheezy	package

Примечания

https://bugs.launchpad.net/bugs/1537424
https://github.com/ImageMagick/ImageMagick/issues/98
https://github.com/ImageMagick/ImageMagick/commit/5f16640725b1225e6337c62526e6577f0f88edb8
https://www.openwall.com/lists/oss-security/2016/08/07/1

EPSS

Процентиль: 76%

0.00961

Низкий

Связанные уязвимости

CVE-2016-7525

CVSS3: 6.5

ubuntu

почти 9 лет назад

Heap-based buffer overflow in coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file.

CVE-2016-7525

CVSS3: 4

redhat

около 10 лет назад

Heap-based buffer overflow in coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file.

CVE-2016-7525

CVSS3: 6.5

nvd

почти 9 лет назад

Heap-based buffer overflow in coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file.

GHSA-fvj8-r28p-2gvw

CVSS3: 6.5

github

больше 3 лет назад

Heap-based buffer overflow in coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file.

SUSE-SU-2016:2964-1

suse-cvrf

около 9 лет назад

Security update for ImageMagick

EPSS

Процентиль: 76%

0.00961

Низкий