Wind River Support Network

HomeDefectsLIN9-4819

Fixed

LIN9-4819 : Security Advisory - imagemagick - CVE-2017-11446

Created: Jul 27, 2017 Updated: Dec 3, 2018

Resolved Date: Aug 2, 2017

Found In Version: 9.0.0.8

Fix Version: 9.0.0.9

Severity: Standard

Applicable for: Wind River Linux 9

Component/s: Userspace

Description

The ReadPESImage function in coders\pes.c in ImageMagick 7.0.6-1 has an infinite loop vulnerability that can cause CPU exhaustion via a crafted PES file.

https://nvd.nist.gov/vuln/detail/CVE-2017-11446

Other Downloads

CVEs

CVE-2017-11446