CVE-2017-11722
First published: Fri Jul 28 2017(Updated: )
The WriteOnePNGImage function in coders/png.c in GraphicsMagick 1.3.26 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted file, because the program's actual control flow was inconsistent with its indentation. This resulted in a logging statement executing outside of a loop, and consequently using an invalid array index corresponding to the loop's exit condition.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| debian/graphicsmagick | 1.4+really1.3.35-1~deb10u2 1.4+really1.3.35-1~deb10u3 1.4+really1.3.36+hg16481-2+deb11u1 1.4+really1.3.40-4 1.4+really1.3.42-1 | |
| Graphicsmagick Graphicsmagick | =1.3.26 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://hg.code.sf.net/p/graphicsmagick/code/rev/f423ba88ca4e
- https://security-tracker.debian.org/tracker/CVE-2017-11722
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PF62B5PJA2JDUOCKJGUQO3SPL74BEYSV/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WHIKB4TP6KBJWT2UIPWL5MWMG5QXKGEJ/
- https://www.debian.org/security/2018/dsa-4321
- collector/security-tracker-debian
- collector/nvd-index
- package-manager/debian
- vendor/graphicsmagick
- canonical/graphicsmagick graphicsmagick
- version/graphicsmagick graphicsmagick/1.3.26