Lucene search

UbuntuUSN-3681-1

HistoryJun 12, 2018 - 12:00 a.m.

ImageMagick vulnerabilities

2018-06-1200:00:00

ubuntu.com

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.9 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.04 Low

EPSS

Percentile

92.0%

JSON

Releases

Ubuntu 18.04 ESM
Ubuntu 17.10
Ubuntu 16.04 ESM
Ubuntu 14.04 ESM

Packages

imagemagick - Image manipulation programs and library

Details

It was discovered that ImageMagick incorrectly handled certain malformed
image files. If a user or automated system using ImageMagick were tricked
into opening a specially crafted image, an attacker could exploit this to
cause a denial of service or possibly execute code with the privileges of
the user invoking the program.

OSVersionArchitecturePackageVersionFilename
Ubuntu18.04noarchimagemagick< 8:6.9.7.4+dfsg-16ubuntu6.2UNKNOWN
Ubuntu18.04noarchimagemagick-6-common< 8:6.9.7.4+dfsg-16ubuntu6.2UNKNOWN
Ubuntu18.04noarchimagemagick-6-doc< 8:6.9.7.4+dfsg-16ubuntu6.2UNKNOWN
Ubuntu18.04noarchimagemagick-6.q16< 8:6.9.7.4+dfsg-16ubuntu6.2UNKNOWN
Ubuntu18.04noarchimagemagick-6.q16-dbgsym< 8:6.9.7.4+dfsg-16ubuntu6.2UNKNOWN
Ubuntu18.04noarchimagemagick-6.q16hdri< 8:6.9.7.4+dfsg-16ubuntu6.2UNKNOWN
Ubuntu18.04noarchimagemagick-6.q16hdri-dbgsym< 8:6.9.7.4+dfsg-16ubuntu6.2UNKNOWN
Ubuntu18.04noarchimagemagick-common< 8:6.9.7.4+dfsg-16ubuntu6.2UNKNOWN
Ubuntu18.04noarchimagemagick-doc< 8:6.9.7.4+dfsg-16ubuntu6.2UNKNOWN
Ubuntu18.04noarchlibimage-magick-perl< 8:6.9.7.4+dfsg-16ubuntu6.2UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Ubuntu	18.04	noarch	imagemagick	< 8:6.9.7.4+dfsg-16ubuntu6.2	UNKNOWN
Ubuntu	18.04	noarch	imagemagick-6-common	< 8:6.9.7.4+dfsg-16ubuntu6.2	UNKNOWN
Ubuntu	18.04	noarch	imagemagick-6-doc	< 8:6.9.7.4+dfsg-16ubuntu6.2	UNKNOWN
Ubuntu	18.04	noarch	imagemagick-6.q16	< 8:6.9.7.4+dfsg-16ubuntu6.2	UNKNOWN
Ubuntu	18.04	noarch	imagemagick-6.q16-dbgsym	< 8:6.9.7.4+dfsg-16ubuntu6.2	UNKNOWN
Ubuntu	18.04	noarch	imagemagick-6.q16hdri	< 8:6.9.7.4+dfsg-16ubuntu6.2	UNKNOWN
Ubuntu	18.04	noarch	imagemagick-6.q16hdri-dbgsym	< 8:6.9.7.4+dfsg-16ubuntu6.2	UNKNOWN
Ubuntu	18.04	noarch	imagemagick-common	< 8:6.9.7.4+dfsg-16ubuntu6.2	UNKNOWN
Ubuntu	18.04	noarch	imagemagick-doc	< 8:6.9.7.4+dfsg-16ubuntu6.2	UNKNOWN
Ubuntu	18.04	noarch	libimage-magick-perl	< 8:6.9.7.4+dfsg-16ubuntu6.2	UNKNOWN

Rows per page:

1-10 of 1401

References

ubuntu.com/security/CVE-2017-1000445

ubuntu.com/security/CVE-2017-1000476

ubuntu.com/security/CVE-2017-10995

ubuntu.com/security/CVE-2017-11352

ubuntu.com/security/CVE-2017-11533

ubuntu.com/security/CVE-2017-11535

ubuntu.com/security/CVE-2017-11537

ubuntu.com/security/CVE-2017-11639

ubuntu.com/security/CVE-2017-11640

ubuntu.com/security/CVE-2017-12140

ubuntu.com/security/CVE-2017-12418

ubuntu.com/security/CVE-2017-12429

ubuntu.com/security/CVE-2017-12430

ubuntu.com/security/CVE-2017-12431

ubuntu.com/security/CVE-2017-12432

ubuntu.com/security/CVE-2017-12433

ubuntu.com/security/CVE-2017-12435

ubuntu.com/security/CVE-2017-12563

ubuntu.com/security/CVE-2017-12587

ubuntu.com/security/CVE-2017-12640

ubuntu.com/security/CVE-2017-12643

ubuntu.com/security/CVE-2017-12644

ubuntu.com/security/CVE-2017-12670

ubuntu.com/security/CVE-2017-12674

ubuntu.com/security/CVE-2017-12691

ubuntu.com/security/CVE-2017-12692

ubuntu.com/security/CVE-2017-12693

ubuntu.com/security/CVE-2017-12875

ubuntu.com/security/CVE-2017-12877

ubuntu.com/security/CVE-2017-12983

ubuntu.com/security/CVE-2017-13058

ubuntu.com/security/CVE-2017-13059

ubuntu.com/security/CVE-2017-13060

ubuntu.com/security/CVE-2017-13061

ubuntu.com/security/CVE-2017-13062

ubuntu.com/security/CVE-2017-13131

ubuntu.com/security/CVE-2017-13134

ubuntu.com/security/CVE-2017-13139

ubuntu.com/security/CVE-2017-13142

ubuntu.com/security/CVE-2017-13143

ubuntu.com/security/CVE-2017-13144

ubuntu.com/security/CVE-2017-13145

ubuntu.com/security/CVE-2017-13758

ubuntu.com/security/CVE-2017-13768

ubuntu.com/security/CVE-2017-13769

ubuntu.com/security/CVE-2017-14060

ubuntu.com/security/CVE-2017-14172

ubuntu.com/security/CVE-2017-14173

ubuntu.com/security/CVE-2017-14174

ubuntu.com/security/CVE-2017-14175

ubuntu.com/security/CVE-2017-14224

ubuntu.com/security/CVE-2017-14249

ubuntu.com/security/CVE-2017-14325

ubuntu.com/security/CVE-2017-14326

ubuntu.com/security/CVE-2017-14341

ubuntu.com/security/CVE-2017-14342

ubuntu.com/security/CVE-2017-14343

ubuntu.com/security/CVE-2017-14400

ubuntu.com/security/CVE-2017-14505

ubuntu.com/security/CVE-2017-14531

ubuntu.com/security/CVE-2017-14532

ubuntu.com/security/CVE-2017-14533

ubuntu.com/security/CVE-2017-14607

ubuntu.com/security/CVE-2017-14624

ubuntu.com/security/CVE-2017-14625

ubuntu.com/security/CVE-2017-14626

ubuntu.com/security/CVE-2017-14682

ubuntu.com/security/CVE-2017-14684

ubuntu.com/security/CVE-2017-14739

ubuntu.com/security/CVE-2017-14741

ubuntu.com/security/CVE-2017-14989

ubuntu.com/security/CVE-2017-15015

ubuntu.com/security/CVE-2017-15016

ubuntu.com/security/CVE-2017-15017

ubuntu.com/security/CVE-2017-15032

ubuntu.com/security/CVE-2017-15033

ubuntu.com/security/CVE-2017-15217

ubuntu.com/security/CVE-2017-15218

ubuntu.com/security/CVE-2017-15277

ubuntu.com/security/CVE-2017-15281

ubuntu.com/security/CVE-2017-16546

ubuntu.com/security/CVE-2017-17499

ubuntu.com/security/CVE-2017-17504

ubuntu.com/security/CVE-2017-17680

ubuntu.com/security/CVE-2017-17681

ubuntu.com/security/CVE-2017-17682

ubuntu.com/security/CVE-2017-17879

ubuntu.com/security/CVE-2017-17881

ubuntu.com/security/CVE-2017-17882

ubuntu.com/security/CVE-2017-17884

ubuntu.com/security/CVE-2017-17885

ubuntu.com/security/CVE-2017-17886

ubuntu.com/security/CVE-2017-17887

ubuntu.com/security/CVE-2017-17914

ubuntu.com/security/CVE-2017-17934

ubuntu.com/security/CVE-2017-18008

ubuntu.com/security/CVE-2017-18022

ubuntu.com/security/CVE-2017-18027

ubuntu.com/security/CVE-2017-18028

ubuntu.com/security/CVE-2017-18029

ubuntu.com/security/CVE-2017-18209

ubuntu.com/security/CVE-2017-18211

ubuntu.com/security/CVE-2017-18251

ubuntu.com/security/CVE-2017-18252

ubuntu.com/security/CVE-2017-18254

ubuntu.com/security/CVE-2017-18271

ubuntu.com/security/CVE-2017-18273

ubuntu.com/security/CVE-2018-10177

ubuntu.com/security/CVE-2018-10804

ubuntu.com/security/CVE-2018-10805

ubuntu.com/security/CVE-2018-11251

ubuntu.com/security/CVE-2018-11625

ubuntu.com/security/CVE-2018-11655

ubuntu.com/security/CVE-2018-11656

ubuntu.com/security/CVE-2018-5246

ubuntu.com/security/CVE-2018-5247

ubuntu.com/security/CVE-2018-5248

ubuntu.com/security/CVE-2018-5357

ubuntu.com/security/CVE-2018-5358

ubuntu.com/security/CVE-2018-6405

ubuntu.com/security/CVE-2018-7443

ubuntu.com/security/CVE-2018-8804

ubuntu.com/security/CVE-2018-8960

ubuntu.com/security/CVE-2018-9133

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.9 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.04 Low

EPSS

Percentile

92.0%

JSON

Related for USN-3681-1