Lucene search

Veracode Vulnerability DatabaseVERACODE:4274

HistoryMay 23, 2017 - 2:00 a.m.

Denial Of Service (DoS) Through Memory Leak

2017-05-2302:00:02

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.003 Low

EPSS

Percentile

70.6%

JSON

ImageMagick is vulnerable to denial of service (DoS) attacks. These attacks are possible due to a flaw in the ReadARTImage function in coders/art.c which contains a memory leak.

CPENameOperatorVersion
imagemagickle6.8.8-9

CPE	Name	Operator	Version
	imagemagick	le	6.8.8-9

References

www.debian.org/security/2017/dsa-3863

www.securityfocus.com/bid/98682

github.com/ImageMagick/ImageMagick/commit/3b0fe05cddd8910f84e51b4d50099702ea45ba4a

github.com/ImageMagick/ImageMagick/commit/7b8c1df65b25d6671f113e2306982eded44ce3b4

github.com/ImageMagick/ImageMagick/issues/456

0.003 Low

EPSS

Percentile

70.6%

JSON

Related for VERACODE:4274