Описание
In GraphicsMagick 1.4 snapshot-20181209 Q8, there is a heap-based buffer overflow in the WriteTGAImage function of tga.c, which allows attackers to cause a denial of service via a crafted image file, because the number of rows or columns can exceed the pixel-dimension restrictions of the TGA specification.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 1.3.28-2ubuntu0.1 |
| cosmic | ignored | end of life |
| devel | not-affected | 1.4~hg15873-1 |
| disco | not-affected | 1.4~hg15873-1 |
| eoan | not-affected | 1.4~hg15873-1 |
| esm-apps/bionic | released | 1.3.28-2ubuntu0.1 |
| esm-apps/focal | not-affected | 1.4~hg15873-1 |
| esm-apps/jammy | not-affected | 1.4~hg15873-1 |
| esm-apps/xenial | released | 1.3.23-1ubuntu0.6+esm2 |
| esm-infra-legacy/trusty | released | 1.3.18-1ubuntu3.1+esm8 |
Показывать по
4.3 Medium
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
In GraphicsMagick 1.4 snapshot-20181209 Q8, there is a heap-based buffer overflow in the WriteTGAImage function of tga.c, which allows attackers to cause a denial of service via a crafted image file, because the number of rows or columns can exceed the pixel-dimension restrictions of the TGA specification.
In GraphicsMagick 1.4 snapshot-20181209 Q8, there is a heap-based buff ...
In GraphicsMagick 1.4 snapshot-20181209 Q8, there is a heap-based buffer overflow in the WriteTGAImage function of tga.c, which allows attackers to cause a denial of service via a crafted image file, because the number of rows or columns can exceed the pixel-dimension restrictions of the TGA specification.
Уязвимость функции WriteTGAImage графического редактора GraphicsMagick, связанная с выходом операции за границы буфера в памяти, позволяющая нарушителю вызвать отказ в обслуживании
4.3 Medium
CVSS2
6.5 Medium
CVSS3