Published: 19/07/2017 Updated: 14/10/2020

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

The ReadSCREENSHOTImage function in coders/screenshot.c in ImageMagick prior to 7.0.6-1 has memory leaks, causing denial of service.

Vulnerable Product	Search on Vulmon	Subscribe to Product
imagemagick imagemagick

Debian Bug report logs - #867897 imagemagick: CVE-2017-11447 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom> Date: Mon, 10 Jul 2017 11:42:01 UTC Severity: important Tags: ...

Several security issues were fixed in ImageMagick ...

This updates fixes several vulnerabilities in imagemagick: Various memory handling problems and cases of missing or incomplete input sanitising may result in denial of service, memory disclosure or the execution of arbitrary code if malformed RLE, SVG, PSD, PDB, DPX, MAT, TGA, VST, CIN, DIB, MPC, EPT, JNG, DJVU, JPEG, ICO, PALM or MNG files are pro ...

The ReadSCREENSHOTImage function in coders/screenshotc in ImageMagick before 706-1 has memory leaks, causing denial of service ...

CWE-772 https://github.com/ImageMagick/ImageMagick/issues/556 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867897 http://www.securityfocus.com/bid/99948 https://github.com/ImageMagick/ImageMagick/commit/72a50e400d98d7a2fd610caedfeb9af043dc5582 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867897 https://usn.ubuntu.com/3363-1/https://nvd.nist.gov

CVE-2017-11447

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect