CVE-2017-13777 - log back

CVE-2017-13777 created at 25 Sep 2019 19:31:40
Severity
+ Medium
Remote
+ Remote
Type
+ Denial of service
Description
+ GraphicsMagick before 1.3.27 has a denial of service issue in ReadXBMImage() in a coders/xbm.c "Read hex image data" version==10 case that results in the reader not returning; it would cause large amounts of CPU and memory consumption although the crafted file itself does not request it.
References
+ http://openwall.com/lists/oss-security/2017/08/31/1
+ http://hg.code.sf.net/p/graphicsmagick/code/rev/233a720bfd5e
Notes