CVE-2017-5506

Опубликовано: 24 мар. 2017

Источник: debian

EPSS Низкий

Описание

Double free vulnerability in magick/profile.c in ImageMagick allows remote attackers to have unspecified impact via a crafted file.

Пакет	Статус	Версия исправления	Релиз	Тип
imagemagick	fixed	8:6.9.7.4+dfsg-1		package

https://github.com/ImageMagick/ImageMagick/issues/354
https://www.openwall.com/lists/oss-security/2017/01/16/6
https://github.com/ImageMagick/ImageMagick/commit/6235f1f7a9f7b0f83b197f6cd0073dbb6602d0fb

EPSS

Процентиль: 61%

0.00407

Низкий

CVE-2017-5506

CVSS3: 7.8

ubuntu

почти 9 лет назад

Double free vulnerability in magick/profile.c in ImageMagick allows remote attackers to have unspecified impact via a crafted file.

CVE-2017-5506

CVSS3: 4.4

redhat

около 9 лет назад

Double free vulnerability in magick/profile.c in ImageMagick allows remote attackers to have unspecified impact via a crafted file.

CVE-2017-5506

CVSS3: 7.8

nvd

почти 9 лет назад

Double free vulnerability in magick/profile.c in ImageMagick allows remote attackers to have unspecified impact via a crafted file.

GHSA-92p2-9f7j-3544

CVSS3: 7.8

github

больше 3 лет назад

Double free vulnerability in magick/profile.c in ImageMagick allows remote attackers to have unspecified impact via a crafted file.

SUSE-SU-2017:0586-1

suse-cvrf

почти 9 лет назад

Security update for ImageMagick

EPSS

Процентиль: 61%

0.00407

Низкий