Описание
ReadGIFImage in coders/gif.c in ImageMagick 7.0.6-1 and GraphicsMagick 1.3.26 leaves the palette uninitialized when processing a GIF file that has neither a global nor local palette. If the affected product is used as a library loaded into a process that operates on interesting data, this data sometimes can be leaked via the uninitialized palette.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | not-affected | 1.3.26-14 |
| cosmic | not-affected | 1.3.26-14 |
| devel | not-affected | 1.3.26-14 |
| disco | not-affected | 1.3.26-14 |
| eoan | not-affected | 1.3.26-14 |
| esm-apps/bionic | not-affected | 1.3.26-14 |
| esm-apps/focal | not-affected | 1.3.26-14 |
| esm-apps/jammy | not-affected | 1.3.26-14 |
| esm-apps/xenial | released | 1.3.23-1ubuntu0.4 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| artful | released | 8:6.9.7.4+dfsg-16ubuntu2.2 |
| bionic | released | 8:6.9.7.4+dfsg-16ubuntu6.2 |
| cosmic | released | 8:6.9.7.4+dfsg-16ubuntu8 |
| devel | released | 8:6.9.7.4+dfsg-16ubuntu8 |
| disco | released | 8:6.9.7.4+dfsg-16ubuntu8 |
| eoan | released | 8:6.9.7.4+dfsg-16ubuntu8 |
| esm-apps/focal | released | 8:6.9.7.4+dfsg-16ubuntu8 |
| esm-apps/jammy | released | 8:6.9.7.4+dfsg-16ubuntu8 |
| esm-infra-legacy/trusty | released | 8:6.7.7.10-6ubuntu3.11 |
| esm-infra/bionic | released | 8:6.9.7.4+dfsg-16ubuntu6.2 |
Показывать по
4.3 Medium
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
ReadGIFImage in coders/gif.c in ImageMagick 7.0.6-1 and GraphicsMagick 1.3.26 leaves the palette uninitialized when processing a GIF file that has neither a global nor local palette. If the affected product is used as a library loaded into a process that operates on interesting data, this data sometimes can be leaked via the uninitialized palette.
ReadGIFImage in coders/gif.c in ImageMagick 7.0.6-1 and GraphicsMagick 1.3.26 leaves the palette uninitialized when processing a GIF file that has neither a global nor local palette. If the affected product is used as a library loaded into a process that operates on interesting data, this data sometimes can be leaked via the uninitialized palette.
ReadGIFImage in coders/gif.c in ImageMagick 7.0.6-1 and GraphicsMagick ...
ReadGIFImage in coders/gif.c in ImageMagick 7.0.6-1 and GraphicsMagick 1.3.26 leaves the palette uninitialized when processing a GIF file that has neither a global nor local palette. If the affected product is used as a library loaded into a process that operates on interesting data, this data sometimes can be leaked via the uninitialized palette.
Уязвимость функции ReadGIFImage (coders/gif.c) кроссплатформенной библиотеки для работы с графикой GraphicsMagick и консольного графического редактора ImageMagick, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации
4.3 Medium
CVSS2
6.5 Medium
CVSS3