[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

ImageMagick - (bulletinoct2017)

ID: oval:org.secpod.oval:def:2101500Date: (C)2020-01-09   (M)2022-07-08
Class: PATCHFamily: unix




A use-after-free in RenderFreetype in MagickCore/annotate.c in ImageMagick 7.0.7-4 Q16 allows attackers to crash the application via a crafted font file, because the FT_Done_Glyph function (from FreeType 2) is called at an incorrect place in the ImageMagick code.

Platform:
Sun Solaris 11
Product:
image/imagemagick
Reference:
bulletinoct2017
CVE-2017-14989
CVE-2017-1000445
CVE-2017-11352
CVE-2017-11447
CVE-2017-11448
CVE-2017-11449
CVE-2017-11450
CVE-2017-15281
CVE-2017-18209
CVE    9
CVE-2017-11447
CVE-2017-11450
CVE-2017-1000445
CVE-2017-11449
...
CPE    1
cpe:/o:oracle:solaris:11

© SecPod Technologies