CVE-2017-13144

Опубликовано: 23 авг. 2017

Источник: debian

Описание

In ImageMagick before 6.9.7-10, there is a crash (rather than a "width or height exceeds limit" error report) if the image dimensions are too large, as demonstrated by use of the mpc coder.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
imagemagick	fixed	8:6.9.7.4+dfsg-13		package

Примечания

https://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=31438
https://github.com/ImageMagick/ImageMagick/commit/9b580ad0564aefd9beeccbcbb8d62ccd05795a84

Связанные уязвимости

CVE-2017-13144

CVSS3: 6.5

ubuntu

больше 8 лет назад

In ImageMagick before 6.9.7-10, there is a crash (rather than a "width or height exceeds limit" error report) if the image dimensions are too large, as demonstrated by use of the mpc coder.

CVE-2017-13144

CVSS3: 3.3

redhat

больше 8 лет назад

In ImageMagick before 6.9.7-10, there is a crash (rather than a "width or height exceeds limit" error report) if the image dimensions are too large, as demonstrated by use of the mpc coder.

CVE-2017-13144

CVSS3: 6.5

nvd

больше 8 лет назад

In ImageMagick before 6.9.7-10, there is a crash (rather than a "width or height exceeds limit" error report) if the image dimensions are too large, as demonstrated by use of the mpc coder.

GHSA-2hh9-vfrm-8f6w

CVSS3: 6.5

github

больше 3 лет назад

In ImageMagick before 6.9.7-10, there is a crash (rather than a "width or height exceeds limit" error report) if the image dimensions are too large, as demonstrated by use of the mpc coder.