Π›ΠΎΠ³ΠΎΡ‚ΠΈΠΏ exploitDog
Консоль
Π›ΠΎΠ³ΠΎΡ‚ΠΈΠΏ exploitDog

exploitDog

ubuntu Π»ΠΎΠ³ΠΎΡ‚ΠΈΠΏ

CVE-2017-13134

ΠžΠΏΡƒΠ±Π»ΠΈΠΊΠΎΠ²Π°Π½ΠΎ: 23 Π°Π²Π³. 2017
Π˜ΡΡ‚ΠΎΡ‡Π½ΠΈΠΊ: ubuntu
ΠŸΡ€ΠΈΠΎΡ€ΠΈΡ‚Π΅Ρ‚: medium
EPSS Низкий
CVSS2: 4.3
CVSS3: 6.5

ОписаниС

In ImageMagick 7.0.6-6 and GraphicsMagick 1.3.26, a heap-based buffer over-read was found in the function SFWScan in coders/sfw.c, which allows attackers to cause a denial of service via a crafted file.

Π Π΅Π»ΠΈΠ·Π‘Ρ‚Π°Ρ‚ΡƒΡΠŸΡ€ΠΈΠΌΠ΅Ρ‡Π°Π½ΠΈΠ΅
bionic

not-affected

1.3.26-19
devel

not-affected

1.3.26-19
disco

not-affected

1.3.26-19
eoan

not-affected

1.3.26-19
esm-apps/bionic

not-affected

1.3.26-19
esm-apps/focal

not-affected

1.3.26-19
esm-apps/jammy

not-affected

1.3.26-19
esm-apps/xenial

released

1.3.23-1ubuntu0.3
esm-infra-legacy/trusty

released

1.3.18-1ubuntu3.1+esm3
focal

not-affected

1.3.26-19

ΠŸΠΎΠΊΠ°Π·Ρ‹Π²Π°Ρ‚ΡŒ ΠΏΠΎ

Π Π΅Π»ΠΈΠ·Π‘Ρ‚Π°Ρ‚ΡƒΡΠŸΡ€ΠΈΠΌΠ΅Ρ‡Π°Π½ΠΈΠ΅
artful

released

8:6.9.7.4+dfsg-16ubuntu2.2
bionic

released

8:6.9.7.4+dfsg-16ubuntu6.2
devel

not-affected

8:6.9.7.4+dfsg-16ubuntu8
disco

not-affected

8:6.9.7.4+dfsg-16ubuntu8
eoan

not-affected

8:6.9.7.4+dfsg-16ubuntu8
esm-apps/focal

not-affected

8:6.9.7.4+dfsg-16ubuntu8
esm-apps/jammy

not-affected

8:6.9.7.4+dfsg-16ubuntu8
esm-infra-legacy/trusty

released

8:6.7.7.10-6ubuntu3.11
esm-infra/bionic

released

8:6.9.7.4+dfsg-16ubuntu6.2
esm-infra/xenial

released

8:6.8.9.9-7ubuntu5.11

ΠŸΠΎΠΊΠ°Π·Ρ‹Π²Π°Ρ‚ΡŒ ΠΏΠΎ

Бсылки Π½Π° источники

EPSS

ΠŸΡ€ΠΎΡ†Π΅Π½Ρ‚ΠΈΠ»ΡŒ: 80%
0.01351
Низкий

4.3 Medium

CVSS2

6.5 Medium

CVSS3

БвязанныС уязвимости

redhat Π»ΠΎΠ³ΠΎΡ‚ΠΈΠΏ

CVE-2017-13134

CVSS3: 3.3
redhat
большС 8 Π»Π΅Ρ‚ Π½Π°Π·Π°Π΄

In ImageMagick 7.0.6-6 and GraphicsMagick 1.3.26, a heap-based buffer over-read was found in the function SFWScan in coders/sfw.c, which allows attackers to cause a denial of service via a crafted file.

nvd Π»ΠΎΠ³ΠΎΡ‚ΠΈΠΏ

CVE-2017-13134

CVSS3: 6.5
nvd
большС 8 Π»Π΅Ρ‚ Π½Π°Π·Π°Π΄

In ImageMagick 7.0.6-6 and GraphicsMagick 1.3.26, a heap-based buffer over-read was found in the function SFWScan in coders/sfw.c, which allows attackers to cause a denial of service via a crafted file.

debian Π»ΠΎΠ³ΠΎΡ‚ΠΈΠΏ

CVE-2017-13134

CVSS3: 6.5
debian
большС 8 Π»Π΅Ρ‚ Π½Π°Π·Π°Π΄

In ImageMagick 7.0.6-6 and GraphicsMagick 1.3.26, a heap-based buffer ...

github Π»ΠΎΠ³ΠΎΡ‚ΠΈΠΏ

GHSA-8c7w-228p-48xg

CVSS3: 6.5
github
большС 3 Π»Π΅Ρ‚ Π½Π°Π·Π°Π΄

In ImageMagick 7.0.6-6 and GraphicsMagick 1.3.26, a heap-based buffer over-read was found in the function SFWScan in coders/sfw.c, which allows attackers to cause a denial of service via a crafted file.

fstec Π»ΠΎΠ³ΠΎΡ‚ΠΈΠΏ

BDU:2019-04088

CVSS3: 6.5
fstec
большС 8 Π»Π΅Ρ‚ Π½Π°Π·Π°Π΄

Π£ΡΠ·Π²ΠΈΠΌΠΎΡΡ‚ΡŒ Ρ„ΡƒΠ½ΠΊΡ†ΠΈΠΈ SFWScan (coders/sfw.c) кроссплатформСнной Π±ΠΈΠ±Π»ΠΈΠΎΡ‚Π΅ΠΊΠΈ для Ρ€Π°Π±ΠΎΡ‚Ρ‹ с Π³Ρ€Π°Ρ„ΠΈΠΊΠΎΠΉ GraphicsMagick ΠΈ консольного графичСского Ρ€Π΅Π΄Π°ΠΊΡ‚ΠΎΡ€Π° ImageMagick, ΠΏΠΎΠ·Π²ΠΎΠ»ΡΡŽΡ‰Π°Ρ Π½Π°Ρ€ΡƒΡˆΠΈΡ‚Π΅Π»ΡŽ Π²Ρ‹Π·Π²Π°Ρ‚ΡŒ ΠΎΡ‚ΠΊΠ°Π· Π² обслуТивании

EPSS

ΠŸΡ€ΠΎΡ†Π΅Π½Ρ‚ΠΈΠ»ΡŒ: 80%
0.01351
Низкий

4.3 Medium

CVSS2

6.5 Medium

CVSS3

Π£ΡΠ·Π²ΠΈΠΌΠΎΡΡ‚ΡŒ CVE-2017-13134