← Back to branch summary

~ubuntu-security/ubuntu-cve-tracker/master

« back to all changes in this revision

Viewing changes to retired/CVE-2015-8898

  • Committer: Steve Beattie
  • Date: 2019-02-19 06:18:27 UTC
  • Revision ID: sbeattie@ubuntu.com-20190219061827-oh57fzcfc1u9dlfk
The ubuntu-cve-tracker project has been converted to git.

Please use 'git clone https://git.launchpad.net/ubuntu-cve-tracker' to
get the converted tree.

Show diffs side-by-side

added added

removed removed

Lines of Context:
retired/CVE-2015-8898
1
 
PublicDateAtUSN: 2015-12-31
2
 
Candidate: CVE-2015-8898
3
 
PublicDate: 2017-03-15
4
 
References:
5
 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8898
6
 
 https://github.com/ImageMagick/ImageMagick/pull/34
7
 
 https://usn.ubuntu.com/usn/usn-3131-1
8
 
Description:
9
 
 The WriteImages function in magick/constitute.c in ImageMagick before
10
 
 6.9.2-4 allows remote attackers to cause a denial of service (NULL pointer
11
 
 dereference) via a crafted image file.
12
 
Ubuntu-Description:
13
 
Notes:
14
 
 mdeslaur> This is 0071-Prevent-null-pointer-access-in-magick-constitute.c.patch
15
 
Bugs:
16
 
Priority: medium
17
 
Discovered-by:
18
 
Assigned-to:
19
 
 
20
 
Patches_imagemagick:
21
 
 upstream: https://github.com/ImageMagick/ImageMagick/commit/5b4bebaa91849c592a8448bc353ab25a54ff8c44
22
 
upstream_imagemagick: released (8:6.8.9.9-7)
23
 
precise_imagemagick: released (8:6.6.9.7-5ubuntu3.5)
24
 
trusty_imagemagick: released (8:6.7.7.10-6ubuntu3.2)
25
 
vivid/stable-phone-overlay_imagemagick: DNE
26
 
vivid/ubuntu-core_imagemagick: DNE
27
 
wily_imagemagick: ignored (reached end-of-life)
28
 
xenial_imagemagick: not-affected (8:6.8.9.9-7ubuntu5)
29
 
yakkety_imagemagick: not-affected (8:6.8.9.9-7ubuntu8)
30
 
devel_imagemagick: not-affected (8:6.8.9.9-7ubuntu9)