Wind River Support Network

HomeDefectsLIN8-10669
Fixed

LIN8-10669 : Security Advisory - imagemagick - CVE-2019-9956

Created: Mar 28, 2019    Updated: May 15, 2019
Resolved Date: Apr 23, 2019
Found In Version: unknown
Fix Version: 8.0.0.30
Severity: Standard
Applicable for: Wind River Linux 8
Component/s: Userspace

Description

In ImageMagick 7.0.8-35 Q16, there is a stack-based buffer overflow in the function PopHexPixel of coders/ps.c, which allows an attacker to cause a denial of service or code execution via a crafted image file.

CREATE(Triage): {Link=https://nvd.nist.gov/vuln/detail/CVE-2019-9956 User=admin}

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube