First published: Tue Jun 07 2016(Updated: )
ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (application crash).
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
openSUSE | =13.2 | |
openSUSE Leap | =42.1 | |
SUSE Linux Enterprise Debuginfo | =11.0-sp4 | |
SUSE Linux Enterprise Desktop | =12.0-sp1 | |
SUSE Linux Enterprise Server | =11.0-sp4 | |
SUSE Linux Enterprise Server | =12.0-sp1 | |
SUSE Linux Enterprise Software Development Kit | =11.0-sp4 | |
SUSE Linux Enterprise Software Development Kit | =12.0-sp1 | |
SUSE Linux Enterprise Workstation Extension | =12.0-sp1 | |
Ubuntu | =12.04 | |
Ubuntu | =14.04 | |
Ubuntu | =16.04 | |
Ubuntu | =16.10 | |
ImageMagick | =6.8.8-9 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2014-9851 has a severity rating that reflects a denial of service vulnerability allowing attackers to crash applications.
To fix CVE-2014-9851, update ImageMagick to a version that includes the patch addressing the vulnerability.
CVE-2014-9851 affects various versions of ImageMagick on platforms such as openSUSE and Ubuntu.
Yes, CVE-2014-9851 can be exploited remotely through specially crafted PSD files.
The consequence of CVE-2014-9851 is an application crash resulting in potential denial of service.