What is the severity of CVE-2016-7800?

CVE-2016-7800 is classified as a critical vulnerability due to its potential to cause application crashes.

How do I fix CVE-2016-7800?

To fix CVE-2016-7800, update GraphicsMagick to version 1.3.26 or later.

Which versions of GraphicsMagick are affected by CVE-2016-7800?

CVE-2016-7800 affects GraphicsMagick versions up to and including 1.3.25.

What types of systems are impacted by CVE-2016-7800?

CVE-2016-7800 impacts systems running vulnerable versions of GraphicsMagick on various Linux distributions.

Can CVE-2016-7800 lead to remote code execution?

CVE-2016-7800 does not directly lead to remote code execution but can cause denial of service by crashing the application.

Vulnerability/
CVE-2016-7800

high

7.5

CWE

119 191

3/10/2016

6/2/2017

6/8/2024

CVE-2016-7800: Buffer Overflow

First published: Mon Oct 03 2016(Updated: )

An unsigned overflow leading to heap buffer overflow vulnerability was found in GraphicsMagick 8BIM reader. A maliciously crafted file could cause the application to crash. References: <a href="http://seclists.org/oss-sec/2016/q4/0">http://seclists.org/oss-sec/2016/q4/0</a> Upstream patch: <a href="https://sourceforge.net/p/graphicsmagick/code/ci/5c7b6d6094a25e99c57f8b18343914ebfd8213ef/">https://sourceforge.net/p/graphicsmagick/code/ci/5c7b6d6094a25e99c57f8b18343914ebfd8213ef/</a>

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
GraphicsMagick	<=1.3.25
openSUSE	=42.1
openSUSE	=13.2
Debian GNU/Linux	=8.0

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2016-7800?
CVE-2016-7800 is classified as a critical vulnerability due to its potential to cause application crashes.
How do I fix CVE-2016-7800?
To fix CVE-2016-7800, update GraphicsMagick to version 1.3.26 or later.
Which versions of GraphicsMagick are affected by CVE-2016-7800?
CVE-2016-7800 affects GraphicsMagick versions up to and including 1.3.25.
What types of systems are impacted by CVE-2016-7800?
CVE-2016-7800 impacts systems running vulnerable versions of GraphicsMagick on various Linux distributions.
Can CVE-2016-7800 lead to remote code execution?
CVE-2016-7800 does not directly lead to remote code execution but can cause denial of service by crashing the application.

agent/type
agent/first-publish-date
agent/references
agent/author
agent/severity
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/event
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2016-7800
agent/weakness
agent/trending
agent/source
agent/tags
agent/softwarecombine
collector/nvd-index
agent/software-canonical-lookup-request
vendor/graphicsmagick
canonical/graphicsmagick
version/graphicsmagick/1.3.25
vendor/opensuse
canonical/opensuse
version/opensuse/42.1
version/opensuse/13.2
vendor/debian
canonical/debian gnu/linux
version/debian gnu/linux/8.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.