CVE-2017-17912

Published: Dec 26, 2017

Modified: Aug 5, 2024

PUBLISHED

Description

In GraphicsMagick 1.4 snapshot-20171217 Q8, there is a heap-based buffer over-read in ReadNewsProfile in coders/tiff.c, in which LocaleNCompare reads heap data beyond the allocated region.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

DSA-4321

vendor-advisory

x_refsource_DEBIAN

https://sourceforge.net/p/graphicsmagick/bugs/533/

x_refsource_CONFIRM

[debian-lts-announce] 20180627 [SECURITY] [DLA 1401-1] graphicsmagick security update

mailing-list

x_refsource_MLIST

[debian-lts-announce] 20180108 [SECURITY] [DLA 1231-1] graphicsmagick security update

mailing-list

x_refsource_MLIST

http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/0d871e813a4f

x_refsource_CONFIRM

USN-4266-1

vendor-advisory

x_refsource_UBUNTU

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2017-17912

Description

Affected Products

References