Lucene search

PRIOn knowledge basePRION:CVE-2018-9018

HistoryMar 25, 2018 - 9:29 p.m.

Design/Logic Flaw

2018-03-2521:29:00

PRIOn knowledge base

www.prio-n.com

6.1 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

75.3%

JSON

In GraphicsMagick 1.3.28, there is a divide-by-zero in the ReadMNGImage function of coders/png.c. Remote attackers could leverage this vulnerability to cause a crash and denial of service via a crafted mng file.

CPENameOperatorVersion
debian_linuxeq8.0
debian_linuxeq7.0
debian_linuxeq9.0
graphicsmagickeq1.3.28

Name	Operator	Version
debian_linux	eq	8.0
debian_linux	eq	7.0
debian_linux	eq	9.0
graphicsmagick	eq	1.3.28

References

www.securityfocus.com/bid/103526

lists.debian.org/debian-lts-announce/2018/03/msg00025.html

lists.debian.org/debian-lts-announce/2018/08/msg00002.html

lists.fedoraproject.org/archives/list/[email protected]/message/3IYH7QSNXXOIDFTYLY455ANZ3JWQ7FCS/

lists.fedoraproject.org/archives/list/[email protected]/message/FS76VNCFL3FVRMGXQEMHBOKA7EE46BTS/

sourceforge.net/p/graphicsmagick/bugs/554/

www.debian.org/security/2018/dsa-4321