In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer over-read in the ReadMNGImage function of coders/png.c, which allows malicious users to cause a denial of service or information disclosure via an image colormap.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
graphicsmagick graphicsmagick |
||
opensuse leap 42.3 |
||
opensuse leap 15.0 |
||
opensuse backports sle 15.0 |
||
debian debian linux 8.0 |
||
debian debian linux 9.0 |
||
debian debian linux 10.0 |
||
canonical ubuntu linux 18.04 |