Wind River Support Network

HomeDefectsLIN8-8328

Fixed

LIN8-8328 : Security Advisory - imagemagick - CVE-2017-17681

Created: Dec 14, 2017 Updated: Dec 3, 2018

Resolved Date: Dec 21, 2017

Found In Version: 8.0.0.24

Fix Version: 8.0.0.25

Severity: Standard

Applicable for: Wind River Linux 8

Component/s: Userspace

Description

In ImageMagick 7.0.7-12 Q16, an infinite loop vulnerability was found in the function ReadPSDChannelZip in coders/psd.c, which allows attackers to cause a denial of service (CPU exhaustion) via a crafted psd image file.

https://nvd.nist.gov/vuln/detail/CVE-2017-17681

Other Downloads

Wind River Linux 8.0.0.25
Wind River Linux 8.0.0.26
Wind River Linux 8.0.0.27
Wind River Linux 8.0.0.28
Wind River Linux 8.0.0.29
Wind River Linux 8.0.0.30
Wind River Linux 8.0.0.31
Wind River Linux 8.0.0.32
Wind River Linux 8.0.0.33
Wind River Linux 8.0.0.34

CVEs

CVE-2017-17681