[Pkg-gmagick-im-team] Bug#869827: CVE-2017-11535: heap based overflow in ps.c
Bastien ROUCARIES
roucaries.bastien at gmail.com
Wed Jul 26 20:26:08 UTC 2017
Source: imagemagick
Version: 8:6.9.7.4+dfsg-12
Severity: important
Tags: security upstream
X-Debbugs-CC: team at security.debian.org
control: found -1 8:6.8.9.9-5+deb8u8
control: found -1 8:6.8.9.9-5+deb8u9
control: found -1 8:6.7.7.10-5+deb7u14
forwarded:https://github.com/ImageMagick/ImageMagick/issues/561
https://github.com/ImageMagick/ImageMagick/commit/b8647f11ddfd6f85a6cc39654c7e78c2bc6412e4
Imagemagick-6: https://github.com/ImageMagick/ImageMagick/commit/bba95cfcc19fa8a261e12692f31279148ad42441
CVE-2017-11535: When ImageMagick 7.0.6-1 processes a crafted file in
convert, it can lead to a heap-based buffer over-read in the
WritePSImage() function in coders/ps.c.
More information about the Pkg-gmagick-im-team
mailing list