logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2016-2317

Description

Multiple buffer overflows in GraphicsMagick 1.3.23 allow remote attackers to cause a denial of service (crash) via a crafted SVG file, related to the (1) TracePoint function in magick/render.c, (2) GetToken function in magick/utility.c, and (3) GetTransformTokens function in coders/svg.c.


Affected Software


CPE Name Name Version
graphicsmagick:graphicsmagick graphicsmagick 1.3.23
debian:debian_linux debian debian linux 8.0
suse:studio_onsite suse studio onsite 1.3
suse:linux_enterprise_software_development_kit suse linux enterprise software development kit 11
opensuse:leap opensuse leap 42.1
suse:linux_enterprise_debuginfo suse linux enterprise debuginfo 11
opensuse:opensuse opensuse 13.2

Related