Описание
In ImageMagick 7.0.6-6 and GraphicsMagick 1.3.26, a heap-based buffer over-read was found in the function SFWScan in coders/sfw.c, which allows attackers to cause a denial of service via a crafted file.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | ImageMagick | Will not fix | ||
| Red Hat Enterprise Linux 6 | ImageMagick | Will not fix | ||
| Red Hat Enterprise Linux 7 | ImageMagick | Will not fix | ||
| Red Hat OpenShift Enterprise 2 | ImageMagick | Will not fix |
Показывать по
Дополнительная информация
Статус:
3.3 Low
CVSS3
Связанные уязвимости
In ImageMagick 7.0.6-6 and GraphicsMagick 1.3.26, a heap-based buffer over-read was found in the function SFWScan in coders/sfw.c, which allows attackers to cause a denial of service via a crafted file.
In ImageMagick 7.0.6-6 and GraphicsMagick 1.3.26, a heap-based buffer over-read was found in the function SFWScan in coders/sfw.c, which allows attackers to cause a denial of service via a crafted file.
In ImageMagick 7.0.6-6 and GraphicsMagick 1.3.26, a heap-based buffer ...
In ImageMagick 7.0.6-6 and GraphicsMagick 1.3.26, a heap-based buffer over-read was found in the function SFWScan in coders/sfw.c, which allows attackers to cause a denial of service via a crafted file.
Уязвимость функции SFWScan (coders/sfw.c) кроссплатформенной библиотеки для работы с графикой GraphicsMagick и консольного графического редактора ImageMagick, позволяющая нарушителю вызвать отказ в обслуживании
3.3 Low
CVSS3