Описание
The load_tile function in the XCF coder in coders/xcf.c in (1) ImageMagick 6.2.8-0 and (2) GraphicsMagick (aka gm) 1.1.7 allows user-assisted remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted .xcf file that triggers an out-of-bounds heap write, possibly related to the ScaleCharToQuantum function.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | released | 1.3.5-5.1 |
| edgy | ignored | end of life, was needed |
| feisty | ignored | end of life, was needed |
| gutsy | ignored | end of life, was needed |
| hardy | ignored | end of life |
| intrepid | ignored | end of life, was needed |
| jaunty | released | 1.1.11-3.2+lenny1build0.9.04.1 |
| karmic | released | 1.3.5-5.1 |
| lucid | released | 1.3.5-5.1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 6:6.2.4.5-0.6ubuntu0.8 |
| devel | not-affected | 7:6.4.5.4.dfsg1-1ubuntu1 |
| edgy | ignored | end of life, was needed |
| feisty | ignored | end of life, was needed |
| gutsy | released | 7:6.2.4.5.dfsg1-2ubuntu1.1 |
| hardy | not-affected | 7:6.3.7.9.dfsg1-2ubuntu1 |
| intrepid | not-affected | 7:6.3.7.9.dfsg1-2ubuntu3 |
| jaunty | not-affected | 7:6.4.5.4.dfsg1-1ubuntu1 |
| karmic | not-affected | 7:6.4.5.4.dfsg1-1ubuntu1 |
| lucid | not-affected | 7:6.4.5.4.dfsg1-1ubuntu1 |
Показывать по
EPSS
6.8 Medium
CVSS2
Связанные уязвимости
The load_tile function in the XCF coder in coders/xcf.c in (1) ImageMagick 6.2.8-0 and (2) GraphicsMagick (aka gm) 1.1.7 allows user-assisted remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted .xcf file that triggers an out-of-bounds heap write, possibly related to the ScaleCharToQuantum function.
The load_tile function in the XCF coder in coders/xcf.c in (1) ImageMagick 6.2.8-0 and (2) GraphicsMagick (aka gm) 1.1.7 allows user-assisted remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted .xcf file that triggers an out-of-bounds heap write, possibly related to the ScaleCharToQuantum function.
The load_tile function in the XCF coder in coders/xcf.c in (1) ImageMa ...
The load_tile function in the XCF coder in coders/xcf.c in (1) ImageMagick 6.2.8-0 and (2) GraphicsMagick (aka gm) 1.1.7 allows user-assisted remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted .xcf file that triggers an out-of-bounds heap write, possibly related to the ScaleCharToQuantum function.
EPSS
6.8 Medium
CVSS2