Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2018-18024

Опубликовано: 07 окт. 2018
Источник: debian

Описание

In ImageMagick 7.0.8-13 Q16, there is an infinite loop in the ReadBMPImage function of the coders/bmp.c file. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp file.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
imagemagickfixed8:6.9.10.14+dfsg-1package
imagemagickignoredjessiepackage

Примечания

  • https://github.com/ImageMagick/ImageMagick/issues/1337

  • https://github.com/ImageMagick/ImageMagick/commit/948f1c86d649a29df08a38d2ff8b91cdf3e92b82

  • ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/b268ce7a59440972f4476b9fd98104b6a836d971

Связанные уязвимости

ubuntu логотип

CVE-2018-18024

CVSS3: 6.5
ubuntu
больше 7 лет назад

In ImageMagick 7.0.8-13 Q16, there is an infinite loop in the ReadBMPImage function of the coders/bmp.c file. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp file.

redhat логотип

CVE-2018-18024

CVSS3: 3.3
redhat
больше 7 лет назад

In ImageMagick 7.0.8-13 Q16, there is an infinite loop in the ReadBMPImage function of the coders/bmp.c file. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp file.

nvd логотип

CVE-2018-18024

CVSS3: 6.5
nvd
больше 7 лет назад

In ImageMagick 7.0.8-13 Q16, there is an infinite loop in the ReadBMPImage function of the coders/bmp.c file. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp file.

suse-cvrf логотип

openSUSE-SU-2018:3204-1

suse-cvrf
больше 7 лет назад

Security update for GraphicsMagick

github логотип

GHSA-q8c2-fv73-qc5x

CVSS3: 6.5
github
больше 3 лет назад

In ImageMagick 7.0.8-13 Q16, there is an infinite loop in the ReadBMPImage function of the coders/bmp.c file. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp file.