CVE-2017-14505 log
| Source |
|
| Severity | Medium |
| Remote | Yes |
| Type | Denial of service |
| Description | DrawGetStrokeDashArray in wand/drawing-wand.c in ImageMagick 6.9.9-10 mishandles certain NULL arrays, which allows attackers to perform Denial of Service (NULL pointer dereference and application crash in AcquireQuantumMemory within MagickCore/memory.c) by providing a crafted Image File as input. |
| Group | Package | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|---|
| AVG-499 | imagemagick | 6.9.9.10-1 | 6.9.9.11-1 | Medium | Fixed |
| References |
|---|
https://github.com/ImageMagick/ImageMagick/commit/6ad5fc3c9b652eec27fc0b1a0817159f8547d5d9 https://github.com/ImageMagick/ImageMagick/issues/716 |