CVE-2017-11102CVE-2017-11102

Affected configuration(s):

cpe:/a:graphicsmagick:graphicsmagick:1.3.26

Date published: 2017-07-07T14:29:00.363-04:00

Date last modified: 2017-07-12T09:51:58.480-04:00

CVSS Score: 5.0

Principal attack vector: NETWORK

Complexity:  LOW

Reference URL: http://hg.code.sf.net/p/graphicsmagick/code/rev/d445af60a8d5

Summary: The ReadOneJNGImage function in coders/png.c in GraphicsMagick 1.3.26 allows remote attackers to cause a denial of service (application crash) during JNG reading via a zero-length color_image data structure.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.