Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2016-4563

Опубликовано: 04 июн. 2016
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 6.8
CVSS3: 8.8

Описание

The TraceStrokePolygon function in MagickCore/draw.c in ImageMagick before 6.9.4-0 and 7.x before 7.0.1-2 mishandles the relationship between the BezierQuantum value and certain strokes data, which allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted file.

РелизСтатусПримечание
devel

released

8:6.8.9.9-7ubuntu10
esm-infra-legacy/trusty

released

8:6.7.7.10-6ubuntu3.2
esm-infra/xenial

released

8:6.8.9.9-7ubuntu5.2
precise

released

8:6.6.9.7-5ubuntu3.5
trusty

released

8:6.7.7.10-6ubuntu3.2
trusty/esm

released

8:6.7.7.10-6ubuntu3.2
upstream

released

8:6.8.9.9-5+deb8u4
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

wily

ignored

end of life

Показывать по

Ссылки на источники

EPSS

Процентиль: 73%
0.00771
Низкий

6.8 Medium

CVSS2

8.8 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2016-4563

redhat
больше 9 лет назад

The TraceStrokePolygon function in MagickCore/draw.c in ImageMagick before 6.9.4-0 and 7.x before 7.0.1-2 mishandles the relationship between the BezierQuantum value and certain strokes data, which allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted file.

nvd логотип

CVE-2016-4563

CVSS3: 8.8
nvd
больше 9 лет назад

The TraceStrokePolygon function in MagickCore/draw.c in ImageMagick before 6.9.4-0 and 7.x before 7.0.1-2 mishandles the relationship between the BezierQuantum value and certain strokes data, which allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted file.

debian логотип

CVE-2016-4563

CVSS3: 8.8
debian
больше 9 лет назад

The TraceStrokePolygon function in MagickCore/draw.c in ImageMagick be ...

github логотип

GHSA-75f5-4mcc-22xp

CVSS3: 8.8
github
больше 3 лет назад

The TraceStrokePolygon function in MagickCore/draw.c in ImageMagick before 6.9.4-0 and 7.x before 7.0.1-2 mishandles the relationship between the BezierQuantum value and certain strokes data, which allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted file.

suse-cvrf логотип

SUSE-SU-2016:1782-1

suse-cvrf
больше 9 лет назад

Security update for ImageMagick

EPSS

Процентиль: 73%
0.00771
Низкий

6.8 Medium

CVSS2

8.8 High

CVSS3