CVE-2017-17882

Опубликовано: 27 дек. 2017

Источник: debian

EPSS Низкий

Описание

In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadXPMImage in coders/xpm.c, which allows attackers to cause a denial of service via a crafted XPM image file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
imagemagick	fixed	8:6.9.9.34+dfsg-3		package

Примечания

https://github.com/ImageMagick/ImageMagick/issues/880
https://github.com/ImageMagick/ImageMagick/commit/903f14eb94521aa6dca9d9ac55d3d9a6c7676a63
ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/92fbef516b94ed96fa2a672831acd5dafb242ac5

EPSS

Процентиль: 63%

0.0045

Низкий

Связанные уязвимости

CVE-2017-17882

CVSS3: 6.5

ubuntu

около 8 лет назад

In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadXPMImage in coders/xpm.c, which allows attackers to cause a denial of service via a crafted XPM image file.

CVE-2017-17882

CVSS3: 3.3

redhat

около 8 лет назад

In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadXPMImage in coders/xpm.c, which allows attackers to cause a denial of service via a crafted XPM image file.

CVE-2017-17882

CVSS3: 6.5

nvd

около 8 лет назад

In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadXPMImage in coders/xpm.c, which allows attackers to cause a denial of service via a crafted XPM image file.

GHSA-83mj-hg89-wff4

CVSS3: 6.5

github

больше 3 лет назад

In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadXPMImage in coders/xpm.c, which allows attackers to cause a denial of service via a crafted XPM image file.

openSUSE-SU-2018:0092-1

suse-cvrf

около 8 лет назад

Security update for ImageMagick

EPSS

Процентиль: 63%

0.0045

Низкий