1
Candidate: CVE-2017-12876
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12876
6
Heap-based buffer overflow in enhance.c in ImageMagick before 7.0.6-6
7
allows remote attackers to cause a denial of service via a crafted file.
10
mdeslaur> per upstream bug, doesn't apply to 6.x
12
https://github.com/ImageMagick/ImageMagick/issues/663
14
Discovered-by: Agostino Sarubbo
18
upstream: https://github.com/ImageMagick/ImageMagick/commit/1cc6f0ccc92c20c7cab6c4a7335daf29c91f0d8e
19
upstream_imagemagick: needs-triage
20
precise/esm_imagemagick: DNE
21
trusty_imagemagick: not-affected
22
vivid/ubuntu-core_imagemagick: DNE
23
xenial_imagemagick: not-affected
24
zesty_imagemagick: not-affected
25
artful_imagemagick: not-affected
26
devel_imagemagick: not-affected