The ReadSVGImage function in svg.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted file.
References
Link | Resource |
---|---|
http://www.debian.org/security/2017/dsa-3863 | Third Party Advisory |
http://www.securityfocus.com/bid/97956 | Third Party Advisory VDB Entry |
https://github.com/ImageMagick/ImageMagick/issues/427 | Issue Tracking Patch Third Party Advisory |
Configurations
History
No history.
Information
Published : 2017-04-18 19:59
Updated : 2024-02-28 15:44
NVD link : CVE-2017-7943
Mitre link : CVE-2017-7943
CVE.ORG link : CVE-2017-7943
JSON object : View
Products Affected
debian
- debian_linux
imagemagick
- imagemagick
CWE
CWE-772
Missing Release of Resource after Effective Lifetime