Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:26902
HistorySep 21, 2020 - 6:24 a.m.

Denial Of Service (DoS)

2020-09-2106:24:44
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
17
denial of service
graphicsmagick
remote attackers
crafted file
application crash
vulnerable

EPSS

0.01

Percentile

83.8%

graphicsmagick:xenial is vulnerable to denial of service (DoS). The DrawImage function in magick/render.c in GraphicsMagick does not properly look for pop keywords that are associated with push keywords, which allows remote attackers to cause a denial of service (negative strncpy and application crash) or possibly have unspecified other impact via a crafted file.