logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2016-2318

Description

GraphicsMagick 1.3.23 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted SVG file, related to the (1) DrawImage function in magick/render.c, (2) SVGStartElement function in coders/svg.c, and (3) TraceArcPath function in magick/render.c.


Affected Package


OS OS Version Package Name Package Version
ubuntu 12.04 graphicsmagick any
ubuntu 14.04 graphicsmagick 1.3.18-1ubuntu3.1
ubuntu upstream graphicsmagick 1.3.24
ubuntu 16.04 graphicsmagick 1.3.23-1ubuntu0.1

Related