Wind River Support Network

HomeDefectsLIN7-7735
Fixed

LIN7-7735 : Security Advisory - imagemagick - CVE-2015-8895

Created: Mar 28, 2017    Updated: May 18, 2019
Resolved Date: Dec 24, 2018
Found In Version: 7.0.0.23
Fix Version: 7.0.0.30
Severity: Standard
Applicable for: Wind River Linux 7
Component/s: Userspace

Description

Integer overflow in coders/icon.c in ImageMagick 6.9.1-3 and later allows remote attackers to cause a denial of service (application crash) via a crafted length value, which triggers a buffer overflow.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-8895

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube