CVE-2017-11166CVE-2017-11166

Affected configuration(s):

cpe:/a:imagemagick:imagemagick:7.0.5-6

Date published: 2017-07-10T14:29:00.223-04:00

Date last modified: 2017-07-13T09:41:20.630-04:00

CVSS Score: 7.1

Principal attack vector: NETWORK

Complexity:  MEDIUM

Reference URL: https://github.com/ImageMagick/ImageMagick/issues/471

Summary: The ReadXWDImage function in codersxwd.c in ImageMagick 7.0.5-6 has a memory leak vulnerability that can cause memory exhaustion via a crafted length (number of color-map entries) field in the header of an XWD file.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.