Описание
In ImageMagick 7.0.6-8, the load_level function in coders/xcf.c lacks offset validation, which allows attackers to cause a denial of service (load_tile memory exhaustion) via a crafted file.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | |
| bionic | ignored | |
| devel | ignored | |
| esm-infra-legacy/trusty | ignored | |
| esm-infra/bionic | ignored | |
| esm-infra/xenial | ignored | |
| precise/esm | DNE | |
| trusty | ignored | |
| trusty/esm | ignored | |
| upstream | released | 8:6.9.9.34+dfsg-3 |
Показывать по
Ссылки на источники
EPSS
7.1 High
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
In ImageMagick 7.0.6-8, the load_level function in coders/xcf.c lacks offset validation, which allows attackers to cause a denial of service (load_tile memory exhaustion) via a crafted file.
In ImageMagick 7.0.6-8, the load_level function in coders/xcf.c lacks offset validation, which allows attackers to cause a denial of service (load_tile memory exhaustion) via a crafted file.
In ImageMagick 7.0.6-8, the load_level function in coders/xcf.c lacks ...
In ImageMagick 7.0.6-8, the load_level function in coders/xcf.c lacks offset validation, which allows attackers to cause a denial of service (load_tile memory exhaustion) via a crafted file.
Уязвимость функции load_level консольного графического редактора ImageMagick, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
7.1 High
CVSS2
6.5 Medium
CVSS3