CVE-2017-9501

Опубликовано: 07 июн. 2017

Источник: debian

Описание

In ImageMagick 7.0.5-7 Q16, an assertion failure was found in the function LockSemaphoreInfo, which allows attackers to cause a denial of service via a crafted file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
imagemagick	fixed	8:6.9.7.4+dfsg-12		package

Примечания

https://github.com/ImageMagick/ImageMagick/issues/491
Fixed by: https://github.com/ImageMagick/ImageMagick/commit/01843366d6a7b96e22ad7bb67f3df7d9fd4d5d74

Связанные уязвимости

CVE-2017-9501

CVSS3: 6.5

ubuntu

больше 8 лет назад

In ImageMagick 7.0.5-7 Q16, an assertion failure was found in the function LockSemaphoreInfo, which allows attackers to cause a denial of service via a crafted file.

CVE-2017-9501

CVSS3: 3.3

redhat

больше 8 лет назад

In ImageMagick 7.0.5-7 Q16, an assertion failure was found in the function LockSemaphoreInfo, which allows attackers to cause a denial of service via a crafted file.

CVE-2017-9501

CVSS3: 6.5

nvd

больше 8 лет назад

In ImageMagick 7.0.5-7 Q16, an assertion failure was found in the function LockSemaphoreInfo, which allows attackers to cause a denial of service via a crafted file.

GHSA-mww5-r6h3-r9x7

CVSS3: 6.5

github

больше 3 лет назад

In ImageMagick 7.0.5-7 Q16, an assertion failure was found in the function LockSemaphoreInfo, which allows attackers to cause a denial of service via a crafted file.

SUSE-SU-2017:2176-1

suse-cvrf

больше 8 лет назад

Security update for ImageMagick