Published: 01/11/2017 Updated: 07/11/2023

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 685

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

It exists that GraphicsMagick incorrectly handled certain image files. An attacker could possibly use this issue to cause a denial of service or other unspecified impact.

Vulnerable Product	Search on Vulmon	Subscribe to Product
graphicsmagick graphicsmagick 1.3.26
debian debian linux 8.0
debian debian linux 7.0
debian debian linux 9.0

Several security issues were fixed in GraphicsMagick ...

Debian Bug report logs - #870157 graphicsmagick: CVE-2017-11643 Package: graphicsmagick; Maintainer for graphicsmagick is Laszlo Boszormenyi (GCS) <gcs@debianorg>; Source for graphicsmagick is src:graphicsmagick (PTS, buildd, popcon) Reported by: Markus Koschany <apo@debianorg> Date: Sun, 30 Jul 2017 14:21:02 UTC ...

Debian Bug report logs - #870149 graphicsmagick: CVE-2017-11636 Package: graphicsmagick; Maintainer for graphicsmagick is Laszlo Boszormenyi (GCS) <gcs@debianorg>; Source for graphicsmagick is src:graphicsmagick (PTS, buildd, popcon) Reported by: Markus Koschany <apo@debianorg> Date: Sun, 30 Jul 2017 14:21:02 UTC ...

Debian Bug report logs - #870153 graphicsmagick: CVE-2017-11637 Package: graphicsmagick; Maintainer for graphicsmagick is Laszlo Boszormenyi (GCS) <gcs@debianorg>; Source for graphicsmagick is src:graphicsmagick (PTS, buildd, popcon) Reported by: Markus Koschany <apo@debianorg> Date: Sun, 30 Jul 2017 14:21:02 UTC ...

Debian Bug report logs - #870156 graphicsmagick: CVE-2017-11642 Package: graphicsmagick; Maintainer for graphicsmagick is Laszlo Boszormenyi (GCS) <gcs@debianorg>; Source for graphicsmagick is src:graphicsmagick (PTS, buildd, popcon) Reported by: Markus Koschany <apo@debianorg> Date: Sun, 30 Jul 2017 14:21:02 UTC ...

Debian Bug report logs - #870155 graphicsmagick: CVE-2017-11641 Package: graphicsmagick; Maintainer for graphicsmagick is Laszlo Boszormenyi (GCS) <gcs@debianorg>; Source for graphicsmagick is src:graphicsmagick (PTS, buildd, popcon) Reported by: Markus Koschany <apo@debianorg> Date: Sun, 30 Jul 2017 14:21:02 UTC ...

Debian Bug report logs - #870154 graphicsmagick: CVE-2017-11638 Package: graphicsmagick; Maintainer for graphicsmagick is Laszlo Boszormenyi (GCS) <gcs@debianorg>; Source for graphicsmagick is src:graphicsmagick (PTS, buildd, popcon) Reported by: Markus Koschany <apo@debianorg> Date: Sun, 30 Jul 2017 14:21:02 UTC ...

GraphicsMagick 1326 is vulnerable to a heap-based buffer overflow vulnerability found in the "Display visual image directory" feature of the DescribeImage() function of the magick/describec file One possible way to trigger the vulnerability is to run the identify command on a specially crafted MIFF format file with the verbose flag ...

'''Vulnerabilities summary The following advisory describes two (2) vulnerabilities found in GraphicsMagick GraphicsMagick is “The swiss army knife of image processing Comprised of 267K physical lines (according to David A Wheeler’s SLOCCount) of source code in the base package (or 1,225K including 3rd party libraries) it provides a robust ...

CWE-119 https://blogs.securiteam.com/index.php/archives/3494 ftp://ftp.graphicsmagick.org/pub/GraphicsMagick/snapshots/ChangeLog.txt http://www.securityfocus.com/bid/101658 https://www.exploit-db.com/exploits/43111/https://lists.debian.org/debian-lts-announce/2017/11/msg00002.html https://lists.debian.org/debian-lts-announce/2018/08/msg00002.html https://www.debian.org/security/2018/dsa-4321 https://usn.ubuntu.com/4232-1/http://hg.graphicsmagick.org/hg/GraphicsMagick?cmd=changeset%3Bnode=7292230dd185 https://nvd.nist.gov https://usn.ubuntu.com/4232-1/https://www.exploit-db.com/exploits/43111/

CVE-2017-16352

Vulnerability Summary

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect