SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

[Forgot Password]

Sample Queries

Paid content will be excluded from the download.

Download | Alert*

OVAL

CVE-2017-17880 -- imagemagick

ID: oval:org.secpod.oval:def:2001232	Date: (C)2019-06-03 (M)2022-01-03
Class: VULNERABILITY	Family: unix

In ImageMagick 7.0.7-16 Q16 x86_64 2017-12-21, there is a stack-based buffer over-read in WriteWEBPImage in coders/webp.c, related to a WEBP_DECODER_ABI_VERSION check.

Platform:

Debian 8.x

Debian 9.x

Product:

imagemagick

Reference:

cpe:/a:imagemagick:imagemagick:7.0.7-16
cpe:/o:debian:debian_linux:8.x
cpe:/o:debian:debian_linux:9.x
cpe:/a:imagemagick:imagemagick
...


30479



423868



250770



909



196157



282