Описание
ImageMagick 7.0.8-11 Q16 has a heap-based buffer over-read in the coders/psd.c ParseImageResourceBlocks function.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| imagemagick | fixed | 8:6.9.10.14+dfsg-1 | package |
Примечания
https://github.com/ImageMagick/ImageMagick/issues/1250
Fixed with same patch as for issue #1249, as per upstream discussion at
https://github.com/ImageMagick/ImageMagick/issues/1250#issuecomment-422361868
ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/17a1a6f97fd088a71931bdc422f4e96bb6ffc549
ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/4745eb1047617330141e9abfd5ae01236a71ae12
Связанные уязвимости
ImageMagick 7.0.8-11 Q16 has a heap-based buffer over-read in the coders/psd.c ParseImageResourceBlocks function.
ImageMagick 7.0.8-11 Q16 has a heap-based buffer over-read in the coders/psd.c ParseImageResourceBlocks function.
ImageMagick 7.0.8-11 Q16 has a heap-based buffer over-read in the coders/psd.c ParseImageResourceBlocks function.
ImageMagick 7.0.8-11 Q16 has a heap-based buffer over-read in the coders/psd.c ParseImageResourceBlocks function.
Уязвимость функции ParseImageResourceBlocks кроссплатформенной библиотеки для работы с графикой ImageMagick, позволяющая нарушителю вызвать отказ в обслуживании или выполнить произвольный код