Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2017-14175

Опубликовано: 07 сент. 2017
Источник: ubuntu
Приоритет: low
EPSS Низкий
CVSS2: 7.1
CVSS3: 6.5

Описание

In coders/xbm.c in ImageMagick 7.0.6-1 Q16, a DoS in ReadXBMImage() due to lack of an EOF (End of File) check might cause huge CPU consumption. When a crafted XBM file, which claims large rows and columns fields in the header but does not contain sufficient backing data, is provided, the loop over the rows would consume huge CPU resources, since there is no EOF check inside the loop.

РелизСтатусПримечание
artful

released

8:6.9.7.4+dfsg-16ubuntu2.2
bionic

released

8:6.9.7.4+dfsg-16ubuntu6.2
devel

released

8:6.9.7.4+dfsg-16ubuntu8
esm-infra-legacy/trusty

released

8:6.7.7.10-6ubuntu3.11
esm-infra/bionic

released

8:6.9.7.4+dfsg-16ubuntu6.2
esm-infra/xenial

released

8:6.8.9.9-7ubuntu5.11
precise/esm

DNE

trusty

released

8:6.7.7.10-6ubuntu3.11
trusty/esm

released

8:6.7.7.10-6ubuntu3.11
upstream

released

8:6.9.9.34+dfsg-3

Показывать по

Ссылки на источники

EPSS

Процентиль: 68%
0.00579
Низкий

7.1 High

CVSS2

6.5 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2017-14175

CVSS3: 3.3
redhat
почти 8 лет назад

In coders/xbm.c in ImageMagick 7.0.6-1 Q16, a DoS in ReadXBMImage() due to lack of an EOF (End of File) check might cause huge CPU consumption. When a crafted XBM file, which claims large rows and columns fields in the header but does not contain sufficient backing data, is provided, the loop over the rows would consume huge CPU resources, since there is no EOF check inside the loop.

nvd логотип

CVE-2017-14175

CVSS3: 6.5
nvd
почти 8 лет назад

In coders/xbm.c in ImageMagick 7.0.6-1 Q16, a DoS in ReadXBMImage() due to lack of an EOF (End of File) check might cause huge CPU consumption. When a crafted XBM file, which claims large rows and columns fields in the header but does not contain sufficient backing data, is provided, the loop over the rows would consume huge CPU resources, since there is no EOF check inside the loop.

debian логотип

CVE-2017-14175

CVSS3: 6.5
debian
почти 8 лет назад

In coders/xbm.c in ImageMagick 7.0.6-1 Q16, a DoS in ReadXBMImage() du ...

github логотип

GHSA-2g4j-2xqp-4hq5

CVSS3: 6.5
github
больше 3 лет назад

In coders/xbm.c in ImageMagick 7.0.6-1 Q16, a DoS in ReadXBMImage() due to lack of an EOF (End of File) check might cause huge CPU consumption. When a crafted XBM file, which claims large rows and columns fields in the header but does not contain sufficient backing data, is provided, the loop over the rows would consume huge CPU resources, since there is no EOF check inside the loop.

fstec логотип

BDU:2017-02082

CVSS3: 6.5
fstec
почти 8 лет назад

Уязвимость функции ReadXBMImage (coders/xbm.c) консольного графического редактора ImageMagick, позволяющая нарушителю вызвать расход вычислительных ресурсов и отказ в обслуживании системы

EPSS

Процентиль: 68%
0.00579
Низкий

7.1 High

CVSS2

6.5 Medium

CVSS3