CVE-2017-11639CVE-2017-11639

Affected configuration(s):

cpe:/a:imagemagick:imagemagick:7.0.6-1

Date published: 2017-07-26T04:29:00.447-04:00

Date last modified: 2017-11-06T21:29:01.123-05:00

CVSS Score: 4.3

Principal attack vector: NETWORK

Complexity:  MEDIUM

Reference URL: http://www.securityfocus.com/bid/100013

Summary: When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a heap-based buffer over-read in the WriteCIPImage() function in coders/cip.c, related to the GetPixelLuma function in MagickCore/pixel-accessor.h.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.