CVE-2017-11535

Опубликовано: 23 июл. 2017

Источник: debian

Описание

When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a heap-based buffer over-read in the WritePSImage() function in coders/ps.c.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
imagemagick	fixed	8:6.9.7.4+dfsg-13		package

Примечания

https://github.com/ImageMagick/ImageMagick/issues/561
https://github.com/ImageMagick/ImageMagick/commit/b8647f11ddfd6f85a6cc39654c7e78c2bc6412e4
Imagemagick-6: https://github.com/ImageMagick/ImageMagick/commit/bba95cfcc19fa8a261e12692f31279148ad42441

Связанные уязвимости

CVE-2017-11535

CVSS3: 6.5

ubuntu

больше 8 лет назад

When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a heap-based buffer over-read in the WritePSImage() function in coders/ps.c.

CVE-2017-11535

CVSS3: 3.3

redhat

больше 8 лет назад

When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a heap-based buffer over-read in the WritePSImage() function in coders/ps.c.

CVE-2017-11535

CVSS3: 6.5

nvd

больше 8 лет назад

When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a heap-based buffer over-read in the WritePSImage() function in coders/ps.c.

GHSA-jm8p-j9vp-r5hw

CVSS3: 6.5

github

больше 3 лет назад

When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a heap-based buffer over-read in the WritePSImage() function in coders/ps.c.

SUSE-SU-2017:3378-1

suse-cvrf

около 8 лет назад

Security update for ImageMagick