Wind River Support Network

HomeDefectsLIN8-8445

Fixed

LIN8-8445 : Security Advisory - imagemagick - CVE-2017-17879

Created: Dec 28, 2017 Updated: Apr 2, 2020

Resolved Date: Jan 14, 2018

Found In Version: 8.0.0.24

Fix Version: 8.0.0.25

Severity: Standard

Applicable for: Wind River Linux 8

Component/s: Userspace

Description

In ImageMagick 7.0.7-16 Q16 x86_64 2017-12-21, there is a heap-based buffer over-read in ReadOneMNGImage in coders/png.c, related to length calculation and caused by an off-by-one error.

https://nvd.nist.gov/vuln/detail/CVE-2017-17879

Other Downloads

Wind River Linux 8.0.0.25
Wind River Linux 8.0.0.26
Wind River Linux 8.0.0.27
Wind River Linux 8.0.0.28
Wind River Linux 8.0.0.29
Wind River Linux 8.0.0.30
Wind River Linux 8.0.0.31
Wind River Linux 8.0.0.32
Wind River Linux 8.0.0.33
Wind River Linux 8.0.0.34

CVEs

CVE-2017-17879