[Pkg-gmagick-im-team] Bug#862633: CVE-2017-8354

Bastien ROUCARIES roucaries.bastien at gmail.com
Mon May 15 08:30:55 UTC 2017


package: src:imagemagick
Version: 8:6.9.7.4+dfsg-6
Severity: important
Tags: security
X-Debbugs-CC: team at security.debian.org
control: found -1 8:6.8.9.9-5+deb8u8
control: found -1 8:6.7.7.10-5+deb7u13
control: found -1 8:6.7.7.10-5+deb7u4
forwarded: https://github.com/ImageMagick/ImageMagick/issues/451

the ReadBMPImage function in bmp.c allows attackers to cause a denial
of service (memory leak) via a crafted file.



More information about the Pkg-gmagick-im-team mailing list