CVE-2017-16669
CVE-2017-16669
coders/wpg.c in GraphicsMagick 1.3.26 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted file, related to the AcquireCacheNexus function in magick/pixel_cache.c.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://hg.code.sf.net/p/graphicsmagick/code/rev/135bdcb88b8dhttp://hg.code.sf.net/p/graphicsmagick/code/rev/1b9e64a8901ehttp://hg.code.sf.net/p/graphicsmagick/code/rev/2a21cda3145bhttp://hg.code.sf.net/p/graphicsmagick/code/rev/2b7c826d36afhttp://hg.code.sf.net/p/graphicsmagick/code/rev/3dc7b4e3779dhttp://hg.code.sf.net/p/graphicsmagick/code/rev/75245a215fffhttp://hg.code.sf.net/p/graphicsmagick/code/rev/e8086faa52d0http://hg.code.sf.net/p/graphicsmagick/code/rev/fcd3ed3394f6https://lists.debian.org/debian-lts-announce/2017/11/msg00013.htmlhttps://lists.debian.org/debian-lts-announce/2018/06/msg00009.htmlhttps://sourceforge.net/p/graphicsmagick/bugs/450/https://usn.ubuntu.com/4248-1/