Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2017-16546

Опубликовано: 05 нояб. 2017
Источник: ubuntu
Приоритет: medium
CVSS2: 6.8
CVSS3: 8.8

Описание

The ReadWPGImage function in coders/wpg.c in ImageMagick 7.0.7-9 does not properly validate the colormap index in a WPG palette, which allows remote attackers to cause a denial of service (use of uninitialized data or invalid memory allocation) or possibly have unspecified other impact via a malformed WPG file.

РелизСтатусПримечание
artful

released

8:6.9.7.4+dfsg-16ubuntu2.2
bionic

released

8:6.9.7.4+dfsg-16ubuntu6.2
devel

released

8:6.9.7.4+dfsg-16ubuntu8
esm-infra-legacy/trusty

released

8:6.7.7.10-6ubuntu3.11
esm-infra/bionic

released

8:6.9.7.4+dfsg-16ubuntu6.2
esm-infra/xenial

released

8:6.8.9.9-7ubuntu5.11
precise/esm

DNE

trusty

released

8:6.7.7.10-6ubuntu3.11
trusty/esm

released

8:6.7.7.10-6ubuntu3.11
upstream

released

8:6.9.9.34+dfsg-3

Показывать по

Ссылки на источники

6.8 Medium

CVSS2

8.8 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2017-16546

CVSS3: 3.3
redhat
больше 8 лет назад

The ReadWPGImage function in coders/wpg.c in ImageMagick 7.0.7-9 does not properly validate the colormap index in a WPG palette, which allows remote attackers to cause a denial of service (use of uninitialized data or invalid memory allocation) or possibly have unspecified other impact via a malformed WPG file.

nvd логотип

CVE-2017-16546

CVSS3: 8.8
nvd
больше 8 лет назад

The ReadWPGImage function in coders/wpg.c in ImageMagick 7.0.7-9 does not properly validate the colormap index in a WPG palette, which allows remote attackers to cause a denial of service (use of uninitialized data or invalid memory allocation) or possibly have unspecified other impact via a malformed WPG file.

debian логотип

CVE-2017-16546

CVSS3: 8.8
debian
больше 8 лет назад

The ReadWPGImage function in coders/wpg.c in ImageMagick 7.0.7-9 does ...

github логотип

GHSA-8r2v-x2w3-6hv7

CVSS3: 8.8
github
больше 3 лет назад

The ReadWPGImage function in coders/wpg.c in ImageMagick 7.0.7-9 does not properly validate the colormap index in a WPG palette, which allows remote attackers to cause a denial of service (use of uninitialized data or invalid memory allocation) or possibly have unspecified other impact via a malformed WPG file.

suse-cvrf логотип

openSUSE-SU-2017:3223-1

suse-cvrf
около 8 лет назад

Security update for GraphicsMagick

6.8 Medium

CVSS2

8.8 High

CVSS3