Wind River Support Network

HomeDefectsLIN7-10800
Fixed

LIN7-10800 : Security Advisory - imagemagick - CVE-2019-9956

Created: Mar 28, 2019    Updated: May 18, 2019
Resolved Date: Apr 23, 2019
Found In Version: unknown
Fix Version: 7.0.0.30
Severity: Standard
Applicable for: Wind River Linux 7
Component/s: Userspace

Description

In ImageMagick 7.0.8-35 Q16, there is a stack-based buffer overflow in the function PopHexPixel of coders/ps.c, which allows an attacker to cause a denial of service or code execution via a crafted image file.

CREATE(Triage): {Link=https://nvd.nist.gov/vuln/detail/CVE-2019-9956 User=admin}

CVEs


Live chat
Online