1
PublicDateAtUSN: 2017-07-20
2
Candidate: CVE-2017-11478
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11478
6
https://usn.ubuntu.com/usn/usn-3363-1
8
The ReadOneDJVUImage function in coders/djvu.c in ImageMagick through
9
6.9.9-0 and 7.x through 7.0.6-1 allows remote attackers to cause a denial
10
of service (infinite loop and CPU consumption) via a malformed DJVU image.
13
mdeslaur> This is 0072-CPU-exhaustion-in-ReadOneDJVUImag.patch
15
https://github.com/ImageMagick/ImageMagick/issues/528
16
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867826
22
upstream: https://github.com/ImageMagick/ImageMagick/commit/78b819628b6a9429f0c33b72e695b4df0b32faea
23
upstream_imagemagick: released (8:6.9.7.4+dfsg-12)
24
precise/esm_imagemagick: DNE
25
trusty_imagemagick: released (8:6.7.7.10-6ubuntu3.8)
26
vivid/ubuntu-core_imagemagick: DNE
27
xenial_imagemagick: released (8:6.8.9.9-7ubuntu5.8)
28
zesty_imagemagick: released (8:6.9.7.4+dfsg-3ubuntu1.2)
29
devel_imagemagick: not-affected (8:6.9.7.4+dfsg-12ubuntu1)