Уязвимость CVE-2018-9133

Пакет	Статус	Версия исправления	Релиз	Тип
imagemagick	fixed	8:6.9.10.2+dfsg-1	experimental	package
imagemagick	fixed	8:6.9.10.2+dfsg-2		package
imagemagick	ignored		jessie	package
imagemagick	ignored		wheezy	package

CVE-2018-9133

CVSS3: 6.5

ubuntu

больше 7 лет назад

ImageMagick 7.0.7-26 Q16 has excessive iteration in the DecodeLabImage and EncodeLabImage functions (coders/tiff.c), which results in a hang (tens of minutes) with a tiny PoC file. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted tiff file.

CVE-2018-9133

CVSS3: 3.3

redhat

больше 7 лет назад

ImageMagick 7.0.7-26 Q16 has excessive iteration in the DecodeLabImage and EncodeLabImage functions (coders/tiff.c), which results in a hang (tens of minutes) with a tiny PoC file. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted tiff file.

CVE-2018-9133

CVSS3: 6.5

nvd

больше 7 лет назад

ImageMagick 7.0.7-26 Q16 has excessive iteration in the DecodeLabImage and EncodeLabImage functions (coders/tiff.c), which results in a hang (tens of minutes) with a tiny PoC file. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted tiff file.

GHSA-2vwp-58hf-5q8q

CVSS3: 6.5

github

около 3 лет назад

ImageMagick 7.0.7-26 Q16 has excessive iteration in the DecodeLabImage and EncodeLabImage functions (coders/tiff.c), which results in a hang (tens of minutes) with a tiny PoC file. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted tiff file.

BDU:2021-03437

CVSS3: 6.5

fstec

больше 7 лет назад

Уязвимость функций DecodeLabImage и EncodeLabImage компонента coders/tiff.c консольного графического редактора ImageMagick, связанная с чрезмерным итерированием, позволяющая нарушителю вызвать отказ в обслуживании

exploitDog

CVE-2018-9133

Описание

Пакеты

Примечания

Связанные уязвимости