CVE-2017-13145

Published: Aug 23, 2017

Modified: Aug 5, 2024

PUBLISHED

Description

In ImageMagick before 6.9.8-8 and 7.x before 7.0.5-9, the ReadJP2Image function in coders/jp2.c does not properly validate the channel geometry, leading to a crash.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/ImageMagick/ImageMagick/commit/acee073df34aa4d491bf5cb74d3a15fc80f0a3aa

x_refsource_CONFIRM

USN-3681-1

vendor-advisory

x_refsource_UBUNTU

GLSA-201711-07

vendor-advisory

x_refsource_GENTOO

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869830

x_refsource_CONFIRM

DSA-4019

vendor-advisory

x_refsource_DEBIAN

https://github.com/ImageMagick/ImageMagick/issues/501

x_refsource_CONFIRM

[debian-lts-announce] 20190514 [SECURITY] [DLA 1785-1] imagemagick security update

mailing-list

x_refsource_MLIST

https://github.com/ImageMagick/ImageMagick/commit/f13c6b54a879aaa771ec64b5a066b939e8f8e7f0

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2017-13145

Description

Affected Products

References