Описание
The DrawImage function in MagickCore/draw.c in ImageMagick before 6.9.4-0 and 7.x before 7.0.1-2 makes an incorrect function call in attempting to locate the next token, which allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted file.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 8:6.8.9.9-7ubuntu10 |
| esm-infra-legacy/trusty | released | 8:6.7.7.10-6ubuntu3.2 |
| esm-infra/xenial | released | 8:6.8.9.9-7ubuntu5.2 |
| precise | released | 8:6.6.9.7-5ubuntu3.5 |
| trusty | released | 8:6.7.7.10-6ubuntu3.2 |
| trusty/esm | released | 8:6.7.7.10-6ubuntu3.2 |
| upstream | released | 8:6.8.9.9-5+deb8u4 |
| vivid/stable-phone-overlay | DNE | |
| vivid/ubuntu-core | DNE | |
| wily | ignored | end of life |
Показывать по
EPSS
7.5 High
CVSS2
9.8 Critical
CVSS3
Связанные уязвимости
The DrawImage function in MagickCore/draw.c in ImageMagick before 6.9.4-0 and 7.x before 7.0.1-2 makes an incorrect function call in attempting to locate the next token, which allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted file.
The DrawImage function in MagickCore/draw.c in ImageMagick before 6.9.4-0 and 7.x before 7.0.1-2 makes an incorrect function call in attempting to locate the next token, which allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted file.
The DrawImage function in MagickCore/draw.c in ImageMagick before 6.9. ...
The DrawImage function in MagickCore/draw.c in ImageMagick before 6.9.4-0 and 7.x before 7.0.1-2 makes an incorrect function call in attempting to locate the next token, which allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted file.
EPSS
7.5 High
CVSS2
9.8 Critical
CVSS3