1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
|
PublicDateAtUSN: 2017-06-05
Candidate: CVE-2017-9440
PublicDate: 2017-06-05
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9440
http://www.ubuntu.com/usn/usn-3363-1
Description:
In ImageMagick 7.0.5-5, a memory leak was found in the function
ReadPSDChannel in coders/psd.c, which allows attackers to cause a denial of
service via a crafted file.
Ubuntu-Description:
Notes:
mdeslaur> This is 0053-CVE-2017-9440.patch
Bugs:
https://github.com/ImageMagick/ImageMagick/issues/462
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=864273
Priority: low
Discovered-by:
Assigned-to:
Patches_imagemagick:
upstream: https://github.com/ImageMagick/ImageMagick/commit/c2be129c25763680afeca59f4de5d6d4240ca2cf
upstream_imagemagick: released (8:6.9.7.4+dfsg-12)
precise/esm_imagemagick: DNE
trusty_imagemagick: not-affected (code not present)
vivid/stable-phone-overlay_imagemagick: DNE
vivid/ubuntu-core_imagemagick: DNE
xenial_imagemagick: released (8:6.8.9.9-7ubuntu5.8)
yakkety_imagemagick: ignored (reached end-of-life)
zesty_imagemagick: released (8:6.9.7.4+dfsg-3ubuntu1.2)
devel_imagemagick: not-affected (8:6.9.7.4+dfsg-12ubuntu1)
|