Wind River Support Network

HomeDefectsLIN8-9258

Fixed

LIN8-9258 : Security Advisory - imagemagick - CVE-2018-11251

Created: May 31, 2018 Updated: Dec 3, 2018

Resolved Date: Jun 19, 2018

Found In Version: 8.0.0.25

Fix Version: 8.0.0.27

Severity: Standard

Applicable for: Wind River Linux 8

Component/s: Userspace

Description

In ImageMagick 7.0.7-23 Q16 x86_64 2018-01-24, there is a heap-based buffer over-read in ReadSUNImage in coders/sun.c, which allows attackers to cause a denial of service (application crash in SetGrayscaleImage in MagickCore/quantize.c) via a crafted SUN image file.

https://nvd.nist.gov/vuln/detail/CVE-2018-11251

Other Downloads

Wind River Linux 8.0.0.27
Wind River Linux 8.0.0.28
Wind River Linux 8.0.0.29
Wind River Linux 8.0.0.30
Wind River Linux 8.0.0.31
Wind River Linux 8.0.0.32
Wind River Linux 8.0.0.33
Wind River Linux 8.0.0.34

CVEs

CVE-2018-11251