1
Candidate: CVE-2017-11539
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11539
6
When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead
7
to a Memory Leak in the ReadOnePNGImage() function in coders/png.c.
10
mdeslaur> 0125-CVE-2017-11539-coders-png.c-Initialized-quantum_info.patch in unstable
11
mdeslaur> 0253-CVE-2017-11539-Fix-memory-leak-in-convert-ReadOnePNGImage.patch in wheezy
12
mdeslaur> not fixing memory leak in trusty and xenial
14
https://github.com/ImageMagick/ImageMagick/issues/582
15
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=870120
21
upstream: https://github.com/ImageMagick/ImageMagick/commit/4e81160d66f02bf7b4f569669ca7dd80d416ba6e
22
upstream_imagemagick: needed
23
precise/esm_imagemagick: DNE
24
trusty_imagemagick: ignored
25
vivid/ubuntu-core_imagemagick: DNE
26
xenial_imagemagick: ignored
27
zesty_imagemagick: ignored (reached end-of-life)
28
artful_imagemagick: not-affected (8:6.9.7.4+dfsg-16ubuntu2)
29
bionic_imagemagick: not-affected (8:6.9.7.4+dfsg-16ubuntu2)
30
devel_imagemagick: not-affected (8:6.9.7.4+dfsg-16ubuntu2)