CVE-2017-11533

Опубликовано: 23 июл. 2017

Источник: debian

Описание

When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a heap-based buffer over-read in the WriteUILImage() function in coders/uil.c.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
imagemagick	fixed	8:6.9.7.4+dfsg-13		package

Примечания

https://github.com/ImageMagick/ImageMagick/issues/562
https://github.com/ImageMagick/ImageMagick/commit/f0c29cc251578fe0ad8ec7b72f2487a77a1696b8
ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/ed1fd69231ab21dc540167c63bc3b0fa3282ec59

Связанные уязвимости

CVE-2017-11533

CVSS3: 6.5

ubuntu

больше 8 лет назад

When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a heap-based buffer over-read in the WriteUILImage() function in coders/uil.c.

CVE-2017-11533

CVSS3: 3.3

redhat

больше 8 лет назад

When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a heap-based buffer over-read in the WriteUILImage() function in coders/uil.c.

CVE-2017-11533

CVSS3: 6.5

nvd

больше 8 лет назад

When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a heap-based buffer over-read in the WriteUILImage() function in coders/uil.c.

GHSA-g7m4-3q73-25h6

CVSS3: 6.5

github

больше 3 лет назад

When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a heap-based buffer over-read in the WriteUILImage() function in coders/uil.c.

openSUSE-SU-2018:0542-1

suse-cvrf

почти 8 лет назад

Security update for GraphicsMagick