← back
CVE-2017-14400

CVE-2017-14400

EPSS 2.2%
In ImageMagick 7.0.7-1 Q16, the PersistPixelCache function in magick/cache.c mishandles the pixel cache nexus, which allows remote attackers to cause a denial of service (NULL pointer dereference in the function GetVirtualPixels in MagickCore/cache.c) via a crafted file.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/ImageMagick/ImageMagick/issues/746https://lists.debian.org/debian-lts-announce/2019/05/msg00015.htmlhttps://lists.debian.org/debian-lts-announce/2020/09/msg00007.htmlhttps://usn.ubuntu.com/3681-1/http://www.securityfocus.com/bid/100865