Lucene search
Veracode Vulnerability DatabaseVERACODE:4955HistoryAug 24, 2017 - 5:27 a.m.
Denial-of-Service (DoS) Through Memory Exhaustion
2017-08-2405:27:26
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
13
EPSS
0.004
Percentile
74.5%
ImageMagick is vulnerable to denial of service (DoS) attacks through memory exhaustion. The load_level function in coders/xcf.c does not validate offsets, allowing a malicious user to pass a xcf file to allocate over the memory limit and consume all the application’s memory.
Related
osv
osv
CVE-2017-13133
2017-08-23 03:29:00
imagemagick - security update
2020-09-07 00:00:00
imagemagick - security update
2019-05-13 00:00:00
prion
prion
Design/Logic Flaw
2017-08-23 03:29:00
cvelist
cvelist
CVE-2017-13133
2017-08-23 03:00:00
nvd
nvd
CVE-2017-13133
2017-08-23 03:29:00
redhatcve
redhatcve
CVE-2017-13133
2017-08-30 14:20:19
debiancve
debiancve
CVE-2017-13133
2017-08-23 03:29:00
ubuntucve
ubuntucve
CVE-2017-13133
2017-08-23 00:00:00
cve
cve
CVE-2017-13133
2017-08-23 03:29:00
nessus
nessus
SUSE SLES11 Security Update : ImageMagick (SUSE-SU-2017:3168-1)
2017-12-01 00:00:00
SUSE SLED12 / SLES12 Security Update : ImageMagick (SUSE-SU-2017:2949-1)
2017-11-09 00:00:00
openSUSE Security Update : ImageMagick (openSUSE-2017-1270)
2017-11-13 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2017:3168-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2017:2949-1)
2021-04-19 00:00:00
Debian: Security Advisory (DLA-1785-1)
2019-05-15 00:00:00
gentoo
gentoo
ImageMagick: Multiple vulnerabilities
2017-11-11 00:00:00
debian
debian
[SECURITY] [DLA 1785-1] imagemagick security update
2019-05-14 10:40:29
[SECURITY] [DLA 2366-1] imagemagick security update
2020-09-07 21:24:40
[SECURITY] [DLA 1081-1] imagemagick security update
2017-08-31 10:47:38