CVE-2017-14138

Опубликовано: 04 сент. 2017

Источник: debian

EPSS Низкий

Описание

ImageMagick 7.0.6-5 has a memory leak vulnerability in ReadWEBPImage in coders/webp.c because memory is not freed in certain error cases, as demonstrated by VP8 errors.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
imagemagick	fixed	8:6.9.9.34+dfsg-3		package

Примечания

https://github.com/ImageMagick/ImageMagick/issues/639

EPSS

Процентиль: 54%

0.00316

Низкий

Связанные уязвимости

CVE-2017-14138

CVSS3: 9.8

ubuntu

больше 8 лет назад

ImageMagick 7.0.6-5 has a memory leak vulnerability in ReadWEBPImage in coders/webp.c because memory is not freed in certain error cases, as demonstrated by VP8 errors.

CVE-2017-14138

CVSS3: 3.3

redhat

больше 8 лет назад

ImageMagick 7.0.6-5 has a memory leak vulnerability in ReadWEBPImage in coders/webp.c because memory is not freed in certain error cases, as demonstrated by VP8 errors.

CVE-2017-14138

CVSS3: 9.8

nvd

больше 8 лет назад

ImageMagick 7.0.6-5 has a memory leak vulnerability in ReadWEBPImage in coders/webp.c because memory is not freed in certain error cases, as demonstrated by VP8 errors.

GHSA-m6v7-949f-98pp

CVSS3: 9.8

github

больше 3 лет назад

ImageMagick 7.0.6-5 has a memory leak vulnerability in ReadWEBPImage in coders/webp.c because memory is not freed in certain error cases, as demonstrated by VP8 errors.

BDU:2017-02087

fstec

больше 8 лет назад

Уязвимость функции ReadWEBPImage (coders/webp.c) консольного графического редактора ImageMagick, позволяющая нарушителю вызвать утечку памяти

EPSS

Процентиль: 54%

0.00316

Низкий