Wind River Support Network

HomeDefectsLIN9-4380

Fixed

LIN9-4380 : Security Advisory - imagemagick - CVE-2017-9501

Created: Jun 14, 2017 Updated: May 29, 2018

Resolved Date: Aug 10, 2017

Found In Version: 9.0.0.7

Fix Version: 9.0.0.8

Severity: Standard

Applicable for: Wind River Linux 9

Component/s: Userspace

Description

In ImageMagick 7.0.5-7 Q16, an assertion failure was found in the function LockSemaphoreInfo, which allows attackers to cause a denial of service via a crafted file.

https://nvd.nist.gov/vuln/detail/CVE-2017-9501

CVEs

CVE-2017-9501