CVE-2017-14138CVE-2017-14138

Affected configuration(s):

cpe:/a:imagemagick:imagemagick:7.0.6-5

Date published: 2017-09-04T19:29:00.313-04:00

Date last modified: 2017-11-12T21:29:02.807-05:00

CVSS Score: 7.5

Principal attack vector: NETWORK

Complexity:  LOW

Reference URL: https://github.com/ImageMagick/ImageMagick/issues/639

Summary: ImageMagick 7.0.6-5 has a memory leak vulnerability in ReadWEBPImage in coders/webp.c because memory is not freed in certain error cases, as demonstrated by VP8 errors.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.