1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
|
Candidate: CVE-2016-7448
PublicDate: 2017-02-06
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7448
http://www.openwall.com/lists/oss-security/2016/09/18/8
Description:
The Utah RLE reader in GraphicsMagick before 1.3.25 allows remote attackers
to cause a denial of service (CPU consumption or large memory allocations)
via vectors involving the header information and the file size.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by: Agostino Sarubbo
Assigned-to:
Patches_graphicsmagick:
upstream_graphicsmagick: released (1.3.25-1)
precise_graphicsmagick: ignored (reached end-of-life)
precise/esm_graphicsmagick: DNE (precise was needs-triage)
trusty_graphicsmagick: needs-triage
vivid/stable-phone-overlay_graphicsmagick: DNE
vivid/ubuntu-core_graphicsmagick: DNE
xenial_graphicsmagick: needs-triage
yakkety_graphicsmagick: not-affected (1.3.25-1)
zesty_graphicsmagick: not-affected (1.3.25-1)
devel_graphicsmagick: not-affected (1.3.25-1)
|