Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
archlinuxArch LinuxASA-201609-6
HistorySep 09, 2016 - 12:00 a.m.

graphicsmagick: multiple issues

2016-09-0900:00:00
Arch Linux
lists.archlinux.org
15

0.015 Low

EPSS

Percentile

86.9%

JSON

  1. A last instance of CVE-2016-2317 (heap buffer overflow) in the MVG
    rendering code (also impacts SVG). This problem was originally
    reported by Gustavo Grieco.

  2. A possible heap overflow of the EscapeParenthesis() function.
    While I was not able to reproduce it for myself, the implementation is
    replaced with a different algorithm. This problem was reported by
    Gustavo Grieco.

  3. The Utah RLE reader did not validate that header information was
    reasonable given the file size and so it could cause huge memory
    allocations and/or consume huge amounts of CPU. This problem was
    reported by Agostino Sarubbo.

  4. The TIFF reader had a bug pertaining to use of TIFFGetField() when
    a ‘count’ value is returned. The bug caused a heap read overflow (due
    to using strlcpy() to copy a possibly unterminated string) which could
    allow an untrusted file to crash the software.

OSVersionArchitecturePackageVersionFilename
anyanyanygraphicsmagick< 1.3.25-1UNKNOWN

Related

osv 3
ubuntucve 2
cve 2
nessus 9
cvelist 2
prion 2
nvd 2
freebsd 1
debiancve 2
openvas 11
alpinelinux 1
amazon 1
fedora 3
mageia 1
debian 3
suse 3
osv
osv
CVE-2016-2317
2017-02-03 15:59:00
graphicsmagick - security update
2016-05-21 00:00:00
graphicsmagick - security update
2016-12-24 00:00:00
ubuntucve
ubuntucve
CVE-2016-2317
2017-02-03 00:00:00
CVE-2016-7446
2017-02-06 00:00:00
cve
cve
CVE-2016-2317
2017-02-03 15:59:00
CVE-2016-7446
2017-02-06 17:59:00
nessus
nessus
FreeBSD : GraphicsMagick -- SVG/Rendering vulnerability (e714b7d2-39f6-4992-9f48-e6b2f5f949df)
2018-08-13 00:00:00
Fedora 22 : GraphicsMagick (2016-40ccaff4d1)
2016-07-14 00:00:00
Fedora 23 : GraphicsMagick (2016-7a878ed298)
2016-07-14 00:00:00
cvelist
cvelist
CVE-2016-2317
2017-02-03 15:00:00
CVE-2016-7446
2017-02-06 17:00:00
prion
prion
Buffer overflow
2017-02-03 15:59:00
Buffer overflow
2017-02-06 17:59:00
nvd
nvd
CVE-2016-2317
2017-02-03 15:59:00
CVE-2016-7446
2017-02-06 17:59:00
freebsd
freebsd
GraphicsMagick -- SVG/Rendering vulnerability
2018-06-23 00:00:00
debiancve
debiancve
CVE-2016-2317
2017-02-03 15:59:00
CVE-2016-7446
2017-02-06 17:59:00
openvas
openvas
GraphicsMagick 'SVG File Parsing' Denial of Service Vulnerability - 02 - Windows
2017-02-07 00:00:00
Amazon Linux: Security Advisory (ALAS-2016-717)
2016-10-26 00:00:00
Fedora Update for GraphicsMagick FEDORA-2016-7a878ed298
2016-06-20 00:00:00
alpinelinux
alpinelinux
CVE-2016-2317
2017-02-03 15:59:00
amazon
amazon
Important: GraphicsMagick
2016-06-22 15:00:00
fedora
fedora
[SECURITY] Fedora 24 Update: GraphicsMagick-1.3.24-1.fc24
2016-06-18 19:49:22
[SECURITY] Fedora 22 Update: GraphicsMagick-1.3.24-1.fc22
2016-06-19 07:19:42
[SECURITY] Fedora 23 Update: GraphicsMagick-1.3.24-1.fc23
2016-06-19 07:29:29
mageia
mageia
Updated graphicsmagick packages fix security vulnerability
2016-07-14 23:33:59
debian
debian
[SECURITY] [DLA 484-1] graphicsmagick security update
2016-05-21 18:51:57
[SECURITY] [DSA 3746-1] graphicsmagick security update
2016-12-24 22:03:28
[SECURITY] [DSA 3746-1] graphicsmagick security update
2016-12-24 22:03:28
suse
suse
Security update for GraphicsMagick (important)
2016-08-15 15:11:03
Security update for GraphicsMagick (important)
2016-07-01 17:07:58
Security update for GraphicsMagick (important)
2016-07-11 16:19:50

0.015 Low

EPSS

Percentile

86.9%

JSON
Related for ASA-201609-6
osv3ubuntucve2cve2nessus9cvelist2prion2nvd2freebsd1debiancve2openvas11alpinelinux1amazon1fedora3mageia1debian3suse3