Lucene search

GoogleOSV:CVE-2016-2318

HistoryFeb 03, 2017 - 3:59 p.m.

CVE-2016-2318

2017-02-0315:59:00

Google

osv.dev

6.6 Medium

AI Score

Confidence

High

0.01 Low

EPSS

Percentile

83.8%

JSON

GraphicsMagick 1.3.23 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted SVG file, related to the (1) DrawImage function in magick/render.c, (2) SVGStartElement function in coders/svg.c, and (3) TraceArcPath function in magick/render.c.

CPENameOperatorVersion
giteq1.0.5
giteq0.99.8e
giteq1.0.1
giteq1.0.0
giteq0.99.9k
giteq0.99
giteq0.99.7c
giteq0.99.9c
giteq0.99.8a
giteq0.99.6

Name	Operator	Version
git	eq	1.0.5
git	eq	0.99.8e
git	eq	1.0.1
git	eq	1.0.0
git	eq	0.99.9k
git	eq	0.99
git	eq	0.99.7c
git	eq	0.99.9c
git	eq	0.99.8a
git	eq	0.99.6

Rows per page:

1-10 of 761

References

lists.opensuse.org/opensuse-security-announce/2016-07/msg00000.html

lists.opensuse.org/opensuse-security-announce/2016-07/msg00010.html

lists.opensuse.org/opensuse-security-announce/2016-08/msg00037.html

www.debian.org/security/2016/dsa-3746

www.openwall.com/lists/oss-security/2016/02/11/6

www.openwall.com/lists/oss-security/2016/05/27/4

www.openwall.com/lists/oss-security/2016/05/31/3

www.openwall.com/lists/oss-security/2016/09/07/4

www.openwall.com/lists/oss-security/2016/09/18/8

www.securityfocus.com/bid/83241

bugzilla.redhat.com/show_bug.cgi?id=1306148