Lucene search
Veracode Vulnerability DatabaseVERACODE:3914HistoryApr 17, 2017 - 11:30 a.m.
Denial Of Service (DoS)
2017-04-1711:30:35
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
EPSS
0.009
Percentile
82.5%
ImageMagick is vulnerable to denial of service (DoS) attacks. This is because there is a buffer overflow in coders/tiff.c which allows remote attackers to cause an application crash or other potentially have other impacts through an image file.
References
lists.opensuse.org/opensuse-updates/2017-02/msg00028.html
seclists.org/oss-sec/2016/q4/758
www.openwall.com/lists/oss-security/2016/12/26/9
www.securityfocus.com/bid/95211
bugzilla.redhat.com/show_bug.cgi?id=1410478
github.com/ImageMagick/ImageMagick/commit/63302366a63602acbaad5c8223a105811b2adddd
github.com/ImageMagick/ImageMagick/commit/f8877abac8e568b2f339cca70c2c3c1b6eaec288
Related
debiancve
debiancve
CVE-2016-10064
2017-03-02 21:59:00
cvelist
cvelist
CVE-2016-10064
2017-03-02 21:00:00
nvd
nvd
CVE-2016-10064
2017-03-02 21:59:00
ubuntucve
ubuntucve
CVE-2016-10064
2017-03-02 00:00:00
redhatcve
redhatcve
CVE-2016-10064
2017-01-05 15:47:26
prion
prion
Buffer overflow
2017-03-02 21:59:00
cve
cve
CVE-2016-10064
2017-03-02 21:59:00
openvas
openvas
Debian: Security Advisory (DSA-3726-1)
2016-11-25 00:00:00
nessus
nessus
openSUSE Security Update : GraphicsMagick (openSUSE-2017-214)
2017-02-09 00:00:00
SUSE SLES11 Security Update : ImageMagick (SUSE-SU-2017:0586-1)
2017-03-02 00:00:00
openSUSE Security Update : ImageMagick (openSUSE-2017-303)
2017-03-07 00:00:00
osv
osv
imagemagick - security update
2016-11-26 00:00:00
imagemagick - security update
2016-12-22 00:00:00