CVE-2017-17680

Опубликовано: 14 дек. 2017

Источник: debian

EPSS Низкий

Описание

In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadXPMImage in coders/xpm.c, which allows attackers to cause a denial of service via a crafted xpm image file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
imagemagick	fixed	8:6.9.9.34+dfsg-3		package

Примечания

https://github.com/ImageMagick/ImageMagick/issues/873
ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/69601843684dd038a8397e1a12dd15777d2513bf
https://github.com/ImageMagick/ImageMagick/commit/7b97357e7f8d6ae848a4c699fe17db6fcf4bd7a9

EPSS

Процентиль: 64%

0.00467

Низкий

Связанные уязвимости

CVE-2017-17680

CVSS3: 6.5

ubuntu

около 8 лет назад

In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadXPMImage in coders/xpm.c, which allows attackers to cause a denial of service via a crafted xpm image file.

CVE-2017-17680

CVSS3: 3.3

redhat

около 8 лет назад

In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadXPMImage in coders/xpm.c, which allows attackers to cause a denial of service via a crafted xpm image file.

CVE-2017-17680

CVSS3: 6.5

nvd

около 8 лет назад

In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadXPMImage in coders/xpm.c, which allows attackers to cause a denial of service via a crafted xpm image file.

GHSA-p9p3-67rp-fc9g

CVSS3: 6.5

github

больше 3 лет назад

In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadXPMImage in coders/xpm.c, which allows attackers to cause a denial of service via a crafted xpm image file.

openSUSE-SU-2018:0092-1

suse-cvrf

около 8 лет назад

Security update for ImageMagick

EPSS

Процентиль: 64%

0.00467

Низкий