First published: Thu Sep 21 2017(Updated: )
Last updated 24 July 2024
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Graphicsmagick Graphicsmagick | =1.3.26 | |
debian/graphicsmagick | 1.4+really1.3.36+hg16481-2+deb11u1 1.4+really1.3.40-4 1.4+really1.3.45-1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2017-14649 is a vulnerability in GraphicsMagick version 1.3.26 that allows an attacker to cause a denial of service by sending malicious JNG data.
CVE-2017-14649 can cause GraphicsMagick to crash due to an assertion failure in the pixel_cache.c file.
The severity of CVE-2017-14649 is medium with a severity value of 5.5.
To fix the CVE-2017-14649 vulnerability, you should update your GraphicsMagick installation to a version that is not affected by the vulnerability.
You can find more information about CVE-2017-14649 on the following references: [link1], [link2], [link3].