8 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-16546
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ReadWPGImage function in coders/wpg.c in ImageMagick 7.0.7-9 does not properly validate the colormap index in a WPG palette, which allows remote attackers t...
SUSE: Security Advisory (SUSE-SU-2017:3378-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2017:3435-1 Security update for GraphicsMagick
This update for GraphicsMagick fixes the following issues: CVE-2017-11640: NULL pointer deref in WritePTIFImage in coders/tiff.c could lead to denial of service bsc1050632 CVE-2017-14342: Memory exhaustion in ReadWPGImage in coders/wpg.c could lead to denial of service bsc1058485 CVE-2017-14341:...
SUSE SLES11 Security Update : ImageMagick (SUSE-SU-2017:3378-1)
This update for ImageMagick fixes the following issues : - CVE-2017-14607: out of bounds read flaw related to ReadTIFFImagehas could possibly disclose potentially sensitive memory bsc1059778 - CVE-2017-11640: NULL pointer deref in WritePTIFImage in coders/tiff.c bsc1050632 - CVE-2017-14342: a...
SUSE SLED12 / SLES12 Security Update : ImageMagick (SUSE-SU-2017:3388-1)
This update for ImageMagick fixes the following issues : - CVE-2017-14989: use-after-free in RenderFreetype in MagickCore/annotate.c could lead to denial of service bsc1061254 - CVE-2017-14682: GetNextToken in MagickCore/token.c heap buffer overflow could lead to denial of service bsc1060176 -...
openSUSE: Security Advisory for GraphicsMagick (openSUSE-SU-2017:3223-1)
The remote host is missing an update for the Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
[SECURITY] [DSA 4040-1] imagemagick security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4040-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff November 17, 2017 https://www.debian.org/security/faq -...
CVE-2017-16546
CVE-2017-16546 affects ImageMagick, where the ReadWPGImage function (coders/wpg.c) does not validate the colormap index in a WPG palette. This can enable an attacker to cause a denial of service by processing a malformed WPG file (potential use of uninitialized data or invalid memory allocation)....