The ReadSVGImage function in svg.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted file.
References
Link | Resource |
---|---|
https://github.com/ImageMagick/ImageMagick/issues/427 | Issue Tracking Patch Third Party Advisory |
http://www.securityfocus.com/bid/97956 | Third Party Advisory VDB Entry |
http://www.debian.org/security/2017/dsa-3863 | Third Party Advisory |
Information
Published : 2017-04-18 12:59
Updated : 2019-10-02 17:03
NVD link : CVE-2017-7943
Mitre link : CVE-2017-7943
JSON object : View
CWE
CWE-772
Missing Release of Resource after Effective Lifetime
Products Affected
debian
- debian_linux
imagemagick
- imagemagick