CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-14042

A memory allocation failure was discovered in the ReadPNMImage function in coders/pnm.c in GraphicsMagick 1.3.26. The vulnerability causes a big memory allocation, which may lead to remote denial of service in the MagickRealloc function in magick/memory.c.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 72.2%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 4.3

References

http://hg.code.sf.net/p/graphicsmagick/code/rev/3bbf7a13643d
http://www.securityfocus.com/bid/100556
https://blogs.gentoo.org/ago/2017/08/28/graphicsmagick-memory-allocation-failure-in-magickrealloc-memory-c-2/
https://usn.ubuntu.com/4206-1/
http://hg.code.sf.net/p/graphicsmagick/code/rev/3bbf7a13643d
http://www.securityfocus.com/bid/100556
https://blogs.gentoo.org/ago/2017/08/28/graphicsmagick-memory-allocation-failure-in-magickrealloc-memory-c-2/
https://usn.ubuntu.com/4206-1/

Products affected by CVE-2017-14042

Graphicsmagick » Graphicsmagick » Version: 1.3.26

cpe:2.3:a:graphicsmagick:graphicsmagick:1.3.26

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-14042

Products

Pricing

Contact Us