CVE-2019-17541

Опубликовано: 14 окт. 2019

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 6.8

CVSS3: 8.8

Описание

ImageMagick before 7.0.8-55 has a use-after-free in DestroyStringInfo in MagickCore/string.c because the error manager is mishandled in coders/jpeg.c.

Релиз	Статус	Примечание
bionic	not-affected	code not present
devel	not-affected	code not present
disco	not-affected	code not present
eoan	not-affected	code not present
esm-infra-legacy/trusty	not-affected	code not present
esm-infra/bionic	not-affected	code not present
esm-infra/xenial	not-affected	code not present
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	not-affected	code not present

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2019-17541

EPSS

Процентиль: 49%

0.00261

Низкий

6.8 Medium

CVSS2

8.8 High

CVSS3

Связанные уязвимости

CVE-2019-17541

CVSS3: 7.8

redhat

около 6 лет назад

ImageMagick before 7.0.8-55 has a use-after-free in DestroyStringInfo in MagickCore/string.c because the error manager is mishandled in coders/jpeg.c.

CVE-2019-17541

CVSS3: 8.8

nvd

почти 6 лет назад

ImageMagick before 7.0.8-55 has a use-after-free in DestroyStringInfo in MagickCore/string.c because the error manager is mishandled in coders/jpeg.c.

CVE-2019-17541

CVSS3: 8.8

debian

почти 6 лет назад

ImageMagick before 7.0.8-55 has a use-after-free in DestroyStringInfo ...

GHSA-p8cw-ccq5-gwg9

github

около 3 лет назад

ImageMagick before 7.0.8-55 has a use-after-free in DestroyStringInfo in MagickCore/string.c because the error manager is mishandled in coders/jpeg.c.

ELSA-2020-1180

oracle-oval

больше 5 лет назад

ELSA-2020-1180: ImageMagick security, bug fix, and enhancement update (MODERATE)

EPSS

Процентиль: 49%

0.00261

Низкий

6.8 Medium

CVSS2

8.8 High

CVSS3

CVE-2019-17541

Описание

Пакет imagemagick

Ссылки на источники

Связанные уязвимости