Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2016-8677

Опубликовано: 15 фев. 2017
Источник: debian

Описание

The AcquireQuantumPixels function in MagickCore/quantum.c in ImageMagick before 7.0.3-1 allows remote attackers to have unspecified impact via a crafted image file, which triggers a memory allocation failure.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
imagemagickfixed8:6.9.6.2+dfsg-1package

Примечания

  • https://blogs.gentoo.org/ago/2016/10/07/imagemagick-memory-allocate-failure-in-acquirequantumpixels-quantum-c/

  • Fixed by: https://github.com/ImageMagick/ImageMagick/commit/6e48aa92ff4e6e95424300ecd52a9ea453c19c60

Связанные уязвимости

ubuntu логотип

CVE-2016-8677

CVSS3: 8.8
ubuntu
почти 9 лет назад

The AcquireQuantumPixels function in MagickCore/quantum.c in ImageMagick before 7.0.3-1 allows remote attackers to have unspecified impact via a crafted image file, which triggers a memory allocation failure.

redhat логотип

CVE-2016-8677

CVSS3: 3.3
redhat
больше 9 лет назад

The AcquireQuantumPixels function in MagickCore/quantum.c in ImageMagick before 7.0.3-1 allows remote attackers to have unspecified impact via a crafted image file, which triggers a memory allocation failure.

nvd логотип

CVE-2016-8677

CVSS3: 8.8
nvd
почти 9 лет назад

The AcquireQuantumPixels function in MagickCore/quantum.c in ImageMagick before 7.0.3-1 allows remote attackers to have unspecified impact via a crafted image file, which triggers a memory allocation failure.

github логотип

GHSA-mcw9-9pmh-fjfc

CVSS3: 8.8
github
больше 3 лет назад

The AcquireQuantumPixels function in MagickCore/quantum.c in ImageMagick before 7.0.3-1 allows remote attackers to have unspecified impact via a crafted image file, which triggers a memory allocation failure.

suse-cvrf логотип

openSUSE-SU-2016:2770-1

suse-cvrf
около 9 лет назад

Security update for ImageMagick