CVE-2016-4563 in ImageMagickinfo

Zusammenfassung (Englisch)

The TraceStrokePolygon function in MagickCore/draw.c in ImageMagick before 6.9.4-0 and 7.x before 7.0.1-2 mishandles the relationship between the BezierQuantum value and certain strokes data, which allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted file.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservieren

06.05.2016

Veröffentlichung

04.06.2016

Status

Bestätigt

Einträge

VulDB provides additional information and datapoints for this CVE:

IDSchwachstelleCWEAusMasCVE
87738ImageMagick draw.c TraceStrokePolygon Pufferüberlauf119Nicht definiertOffizieller FixCVE-2016-4563

Beschreibung

CPE

CWE

CVSS

Exploits

History

Diff

Verknüpfen

Threat Intelligence

API JSON

API XML

API CSV

Quellen

ZurückÜbersichtWeiter

Do you know our Splunk app?

Download it now for free!