CVE-2017-11751

Priority
Description
The WritePICONImage function in coders/xpm.c in ImageMagick 7.0.6-4 allows
remote attackers to cause a denial of service (memory leak) via a crafted
file.
Notes
 mdeslaur> 0128-CVE-2017-11751.patch in unstable
 mdeslaur> 0259-CVE-2017-11751-Fix-remote-denial-of-service-memory-leak-in-WritePICONImage.patch in wheezy
 mdeslaur> not fixing memory leak in trusty and xenial
Package
Upstream:released (8:6.9.7.4+dfsg-16)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 LTS (Trusty Tahr):ignored
Ubuntu 16.04 LTS (Xenial Xerus):ignored
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (8:6.9.7.4+dfsg-16ubuntu2)
Ubuntu 18.10 (Cosmic Cuttlefish):not-affected (8:6.9.7.4+dfsg-16ubuntu2)
Patches:
Upstream:https://github.com/ImageMagick/ImageMagick/commit/b04e9c949d917a4a603f1a9bfe09737246229323
More Information

Updated: 2019-01-14 22:29:03 UTC (commit 51f9b73af244ba86b9321e46e526586c25a8e060)