[prev in list] [next in list] [prev in thread] [next in thread]
List: oss-security
Subject: [oss-security] ImageMagick : CVE-2017-14741 : Infinite loop in ReadCAPTIONImage
From: "=?ISO-8859-1?B?Tk9JUkZBVEU=?=" <noirfate () vip ! qq ! com>
Date: 2017-09-26 9:10:35
Message-ID: tencent_67D03AC71B42EFBB2FE69E9FC1E18DDEE405 () qq ! com
[Download RAW message or body]
[Attachment #2 (text/plain)]
Description:The ReadCAPTIONImage function in coders/caption.c in ImageMagick allows \
attackers to cause a denial of service (infinite loop) via a crafted font \
file.Affected version:ImageMagick 7.0.7-3 (maybe previous versions are affected as \
well)Fixed version:ImageMagick 7.0.7-4Commit \
fix:https://github.com/ImageMagick/ImageMagick/commit/7d8e14899c562157c7760a77fc91625a27cb596fDetails:https://github.com/ImageMagick/ImageMagick/issues/771Credit:This \
bug was discovered by Yihan Lian of GearTeam at Qihoo360 CVE:CVE-2017-14741
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic