Wind River Support Network

HomeDefectsLIN7-7265
Fixed

LIN7-7265 : Security Advisory - imagemagick - CVE-2016-8707

Created: Dec 28, 2016    Updated: Sep 8, 2018
Resolved Date: Jan 3, 2017
Found In Version: 7.0.0.22
Fix Version: 7.0.0.23
Severity: Standard
Applicable for: Wind River Linux 7
Component/s: Userspace

Description

An exploitable out of bounds write exists in the handling of compressed TIFF images in ImageMagicks's convert utility. A crafted TIFF document can lead to an out of bounds write which in particular circumstances could be leveraged into remote code execution. The vulnerability can be triggered through any user controlled TIFF that is handled by this functionality.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-8707

Other Downloads


CVEs


Live chat
Online