Lucene search
Veracode Vulnerability DatabaseVERACODE:3767HistoryMar 24, 2017 - 7:23 a.m.
Denial Of Service (DoS) Via Buffer Overflow
2017-03-2407:23:06
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11
0.009 Low
EPSS
Percentile
82.4%
ImageMagick is vulnerable to denial of service (DoS) attacks via buffer overflow and other attacks. This is caused by the ReadRLEImage function in coders/rle.c and can be triggered using an RLE file.
| CPE | Name | Operator | Version |
|---|---|---|---|
| imagemagick | le | 6.8.8-9 |
References
seclists.org/oss-sec/2016/q4/758
www.openwall.com/lists/oss-security/2016/12/26/9
www.securityfocus.com/bid/95180
bugzilla.redhat.com/show_bug.cgi?id=1410452
github.com/ImageMagick/ImageMagick/commit/13db820f5e24cd993ee554e99377fea02a904e18
github.com/ImageMagick/ImageMagick/commit/3e9165285eda6e1bb71172031d3048b51bb443a4
www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=29710
Related
openvas
openvas
ImageMagick 'coders/rle.c' Remote Buffer Overflow Vulnerability - Windows
2017-01-13 00:00:00
ImageMagick 'coders/rle.c' Remote Buffer Overflow Vulnerability - Mac OS X
2017-01-17 00:00:00
SUSE: Security Advisory (SUSE-SU-2017:0586-1)
2021-06-09 00:00:00
debiancve
debiancve
CVE-2016-10049
2017-03-23 17:59:00
cve
cve
CVE-2016-10049
2017-03-23 17:59:00
ubuntucve
ubuntucve
CVE-2016-10049
2017-03-23 00:00:00
prion
prion
Buffer overflow
2017-03-23 17:59:00
cvelist
cvelist
CVE-2016-10049
2017-03-23 17:00:00
nvd
nvd
CVE-2016-10049
2017-03-23 17:59:00
nessus
nessus
SUSE SLES11 Security Update : ImageMagick (SUSE-SU-2017:0586-1)
2017-03-02 00:00:00
SUSE SLED12 / SLES12 Security Update : ImageMagick (SUSE-SU-2017:0529-1)
2017-02-22 00:00:00
openSUSE Security Update : ImageMagick (openSUSE-2017-303)
2017-03-07 00:00:00
osv
osv
imagemagick - security update
2016-08-25 00:00:00