logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2016-2317

Description

Multiple buffer overflows in GraphicsMagick 1.3.23 allow remote attackers to cause a denial of service (crash) via a crafted SVG file, related to the (1) TracePoint function in magick/render.c, (2) GetToken function in magick/utility.c, and (3) GetTransformTokens function in coders/svg.c.


Affected Package


OS OS Version Package Name Package Version
ubuntu 12.04 graphicsmagick any
ubuntu 14.04 graphicsmagick 1.3.18-1ubuntu3.1
ubuntu upstream graphicsmagick 1.3.24
ubuntu 16.04 graphicsmagick 1.3.23-1ubuntu0.1

Related