Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.3
CVSSv2

CVE-2017-11539

Published: 23/07/2017 Updated: 03/10/2019
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Subscribe to Imagemagick

Vulnerability Summary

When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Memory Leak in the ReadOnePNGImage() function in coders/png.c.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

imagemagick imagemagick 7.0.6-1

Vendor Advisories

Debian CVElist Bug Report Logs: imagemagick: CVE-2017-12676
Debian Bug report logs - #870118 imagemagick: CVE-2017-12676 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom> Date: Sat, 29 Jul 2017 21:39:02 UTC Severity: important Tags: ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-12565: memory leak in ReadOneJNGImage
Debian Bug report logs - #870115 imagemagick: CVE-2017-12565: memory leak in ReadOneJNGImage Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom> Date: Sat, 29 Jul 2017 21:36:01 ...
Debian CVElist Bug Report Logs: CVE-2017-12671
Debian Bug report logs - #870119 CVE-2017-12671 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom> Date: Sat, 29 Jul 2017 21:39:07 UTC Severity: important Tags: security, ups ...
Debian CVElist Bug Report Logs: CVE-2017-11639
Debian Bug report logs - #870065 CVE-2017-11639 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom> Date: Sat, 29 Jul 2017 12:06:05 UTC Severity: important Tags: security, ups ...
Debian CVElist Bug Report Logs: CVE-2017-11539
Debian Bug report logs - #870120 CVE-2017-11539 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom> Date: Sat, 29 Jul 2017 21:45:02 UTC Severity: important Tags: security, ups ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-12641
Debian Bug report logs - #870108 imagemagick: CVE-2017-12641 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom> Date: Sat, 29 Jul 2017 20:45:01 UTC Severity: important Tags: ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-13141
Debian Bug report logs - #870116 imagemagick: CVE-2017-13141 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom> Date: Sat, 29 Jul 2017 21:36:09 UTC Severity: important Tags: ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-13140
Debian Bug report logs - #870111 imagemagick: CVE-2017-13140 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom> Date: Sat, 29 Jul 2017 20:51:01 UTC Severity: important Tags: ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-13142
Debian Bug report logs - #870105 imagemagick: CVE-2017-13142 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom> Date: Sat, 29 Jul 2017 20:33:02 UTC Severity: important Tags: ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-12640
Debian Bug report logs - #870106 imagemagick: CVE-2017-12640 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom> Date: Sat, 29 Jul 2017 20:39:01 UTC Severity: important Tags: ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-13139
Debian Bug report logs - #870109 imagemagick: CVE-2017-13139 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom> Date: Sat, 29 Jul 2017 20:45:07 UTC Severity: important Tags: ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-12673
Debian Bug report logs - #870117 imagemagick: CVE-2017-12673 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom> Date: Sat, 29 Jul 2017 21:36:15 UTC Severity: important Tags: ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-12643: memory exhaustion in ReadOneJNGImage in png.c
Debian Bug report logs - #870107 imagemagick: CVE-2017-12643: memory exhaustion in ReadOneJNGImage in pngc Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom> Date: Sat, 29 Ju ...
Debian CVElist Bug Report Logs: CVE-2017-11640
Debian Bug report logs - #870067 CVE-2017-11640 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom> Date: Sat, 29 Jul 2017 12:09:04 UTC Severity: important Tags: security, ups ...
Red Hat: CVE-2017-11539
When ImageMagick 706-1 processes a crafted file in convert, it can lead to a Memory Leak in the ReadOnePNGImage() function in coders/pngc ...

References

CWE-772https://github.com/ImageMagick/ImageMagick/issues/582http://www.securityfocus.com/bid/99936https://nvd.nist.govhttps://bugs.debian.org/cgi-bin/bugreport.cgi?bug=870118https://access.redhat.com/security/cve/cve-2017-11539
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4946CVE-2024-30309CVE-2024-4761CVE-2024-30051type confusionmemory leakCVE-2024-30293reflected XSSCVE-2024-3126
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook