Wind River Support Network

HomeDefectsLIN6-14128

Fixed

LIN6-14128 : Security Advisory - imagemagick - CVE-2017-17914

Created: Dec 29, 2017 Updated: Dec 3, 2018

Resolved Date: Apr 13, 2018

Found In Version: 6.0.0.35

Fix Version: 6.0.0.37

Severity: Standard

Applicable for: Wind River Linux 6

Component/s: Userspace

Description

In ImageMagick 7.0.7-16 Q16, a vulnerability was found in the function ReadOnePNGImage in coders/png.c, which allows attackers to cause a denial of service (ReadOneMNGImage large loop) via a crafted mng image file.

https://nvd.nist.gov/vuln/detail/CVE-2017-17914

Other Downloads

Wind River Linux 6.0.0.37
Wind River Linux 6.0.0.38