Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5
CVSSv2

CVE-2016-7800

Published: 06/02/2017 Updated: 12/04/2019
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Subscribe to Graphicsmagick

Vulnerability Summary

Integer underflow in the parse8BIM function in coders/meta.c in GraphicsMagick 1.3.25 and previous versions allows remote malicious users to cause a denial of service (application crash) via a crafted 8BIM chunk, which triggers a heap-based buffer overflow.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

graphicsmagick graphicsmagick

opensuse leap 42.1

opensuse opensuse 13.2

debian debian linux 8.0

Vendor Advisories

Amazon Linux AMI: ALAS-2017-820
The QuantumTransferMode function in coders/tiffc in GraphicsMagick 1325 and earlier allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a small samples per pixel value in a CMYKA TIFF file(CVE-2017-6335) The WPG format reader in GraphicsMagick 1325 and earlier allows remote attackers to cause a ...
Debian CVElist Bug Report Logs: graphicsmagick: CVE-2017-10800: OOM in ReadMATImage()
Debian Bug report logs - #867060 graphicsmagick: CVE-2017-10800: OOM in ReadMATImage() Package: src:graphicsmagick; Maintainer for src:graphicsmagick is Laszlo Boszormenyi (GCS) <gcs@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Mon, 3 Jul 2017 18:57:04 UTC Severity: important Tags: patch, ...
Debian CVElist Bug Report Logs: graphicsmagick: CVE-2017-10794
Debian Bug report logs - #867085 graphicsmagick: CVE-2017-10794 Package: src:graphicsmagick; Maintainer for src:graphicsmagick is Laszlo Boszormenyi (GCS) <gcs@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Mon, 3 Jul 2017 19:51:02 UTC Severity: important Tags: fixed-upstream, patch, securi ...
Debian CVElist Bug Report Logs: graphicsmagick: CVE-2017-10799: denial of service (OOM) can occur inReadDPXImage()
Debian Bug report logs - #867077 graphicsmagick: CVE-2017-10799: denial of service (OOM) can occur inReadDPXImage() Package: src:graphicsmagick; Maintainer for src:graphicsmagick is Laszlo Boszormenyi (GCS) <gcs@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Mon, 3 Jul 2017 19:36:04 UTC Sev ...
Debian CVElist Bug Report Logs: graphicsmagick: CVE-2017-11643
Debian Bug report logs - #870157 graphicsmagick: CVE-2017-11643 Package: graphicsmagick; Maintainer for graphicsmagick is Laszlo Boszormenyi (GCS) <gcs@debianorg>; Source for graphicsmagick is src:graphicsmagick (PTS, buildd, popcon) Reported by: Markus Koschany <apo@debianorg> Date: Sun, 30 Jul 2017 14:21:02 UTC ...
Debian CVElist Bug Report Logs: graphicsmagick: CVE-2017-11636
Debian Bug report logs - #870149 graphicsmagick: CVE-2017-11636 Package: graphicsmagick; Maintainer for graphicsmagick is Laszlo Boszormenyi (GCS) <gcs@debianorg>; Source for graphicsmagick is src:graphicsmagick (PTS, buildd, popcon) Reported by: Markus Koschany <apo@debianorg> Date: Sun, 30 Jul 2017 14:21:02 UTC ...
Debian CVElist Bug Report Logs: graphicsmagick: CVE-2017-11637
Debian Bug report logs - #870153 graphicsmagick: CVE-2017-11637 Package: graphicsmagick; Maintainer for graphicsmagick is Laszlo Boszormenyi (GCS) <gcs@debianorg>; Source for graphicsmagick is src:graphicsmagick (PTS, buildd, popcon) Reported by: Markus Koschany <apo@debianorg> Date: Sun, 30 Jul 2017 14:21:02 UTC ...
Debian CVElist Bug Report Logs: graphicsmagick: CVE-2017-11642
Debian Bug report logs - #870156 graphicsmagick: CVE-2017-11642 Package: graphicsmagick; Maintainer for graphicsmagick is Laszlo Boszormenyi (GCS) <gcs@debianorg>; Source for graphicsmagick is src:graphicsmagick (PTS, buildd, popcon) Reported by: Markus Koschany <apo@debianorg> Date: Sun, 30 Jul 2017 14:21:02 UTC ...
Debian CVElist Bug Report Logs: graphicsmagick: CVE-2017-11641
Debian Bug report logs - #870155 graphicsmagick: CVE-2017-11641 Package: graphicsmagick; Maintainer for graphicsmagick is Laszlo Boszormenyi (GCS) <gcs@debianorg>; Source for graphicsmagick is src:graphicsmagick (PTS, buildd, popcon) Reported by: Markus Koschany <apo@debianorg> Date: Sun, 30 Jul 2017 14:21:02 UTC ...
Debian CVElist Bug Report Logs: graphicsmagick: CVE-2017-11638
Debian Bug report logs - #870154 graphicsmagick: CVE-2017-11638 Package: graphicsmagick; Maintainer for graphicsmagick is Laszlo Boszormenyi (GCS) <gcs@debianorg>; Source for graphicsmagick is src:graphicsmagick (PTS, buildd, popcon) Reported by: Markus Koschany <apo@debianorg> Date: Sun, 30 Jul 2017 14:21:02 UTC ...

References

CWE-119CWE-191https://sourceforge.net/p/graphicsmagick/code/ci/5c7b6d6094a25e99c57f8b18343914ebfd8213ef/https://bugzilla.redhat.com/show_bug.cgi?id=1381148http://www.openwall.com/lists/oss-security/2016/10/01/7http://www.debian.org/security/2016/dsa-3746http://lists.opensuse.org/opensuse-updates/2016-10/msg00097.htmlhttp://lists.opensuse.org/opensuse-updates/2016-10/msg00094.htmlhttp://www.securityfocus.com/bid/96135http://www.securityfocus.com/bid/93262https://nvd.nist.govhttps://alas.aws.amazon.com/ALAS-2017-820.html
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-34377CVE-2024-20859CVE-2023-49606injectarbitrary CVE-2024-33788CVE-2024-30973IDORCVE-2024-33907
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook