CVE-2017-9142

Priority
Low
Description
In ImageMagick 7.0.5-7 Q16, a crafted file could trigger an assertion
failure in the WriteBlob function in MagickCore/blob.c because of missing
checks in the ReadOneJNGImage function in coders/png.c.
References
Bugs
Notes
 mdeslaur> This is 0213-Fixed-incorrect-call-to-WriteBlob-reported-in-490.patch
Package
Upstream:needs-triage
Ubuntu 17.10 (Artful Aardvark):released (8:6.9.7.4+dfsg-9ubuntu1)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 LTS (Trusty Tahr):released (8:6.7.7.10-6ubuntu3.7)
Ubuntu Core 15.04:DNE
Ubuntu 16.04 LTS (Xenial Xerus):released (8:6.8.9.9-7ubuntu5.7)
Ubuntu 17.04 (Zesty Zapus):released (8:6.9.7.4+dfsg-3ubuntu1.1)
Patches:
Upstream:https://github.com/ImageMagick/ImageMagick/commit/72f5c8632bff2daf3c95005f9b4cf2982786b52a
More Information

Updated: 2017-08-11 23:56:01 UTC (commit 13081)