QwikSec

Security Database

CVE

CWE

Training

CVE-2017-18219

Published: Mar 5, 2018

Modified: Aug 5, 2024

PUBLISHED

Description

An issue was discovered in GraphicsMagick 1.3.26. An allocation failure vulnerability was found in the function ReadOnePNGImage in coders/png.c, which allows attackers to cause a denial of service via a crafted file that triggers an attempt at a large png_pixels array allocation.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

vdb-entry

x_refsource_BID

https://sourceforge.net/p/graphicsmagick/bugs/459/

x_refsource_CONFIRM

[debian-lts-announce] 20180328 [SECURITY] [DLA 1322-1] graphicsmagick security update

mailing-list

x_refsource_MLIST

vendor-advisory

x_refsource_DEBIAN

[debian-lts-announce] 20180803 [SECURITY] [DLA 1456-1] graphicsmagick security update

mailing-list

x_refsource_MLIST

http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/cadd4b0522fa

x_refsource_CONFIRM

FEDORA-2019-da4c20882c

vendor-advisory

x_refsource_FEDORA

FEDORA-2019-425a1aa7c9

vendor-advisory

x_refsource_FEDORA

vendor-advisory

x_refsource_UBUNTU

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.