CVE-2013-4298
Severity CVSS v4.0:
Pending analysis
Type:
CWE-119
Buffer Errors
Publication date:
10/09/2013
Last modified:
11/04/2025
Description
The ReadGIFImage function in coders/gif.c in ImageMagick before 6.7.8-8 allows remote attackers to cause a denial of service (memory corruption and application crash) via a crafted comment in a GIF image.
Impact
Base Score 2.0
4.30
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:imagemagick:imagemagick:*:*:*:*:*:*:*:* | 6.7.8-7 (including) | |
| cpe:2.3:a:imagemagick:imagemagick:6.7.8-0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:imagemagick:imagemagick:6.7.8-1:*:*:*:*:*:*:* | ||
| cpe:2.3:a:imagemagick:imagemagick:6.7.8-2:*:*:*:*:*:*:* | ||
| cpe:2.3:a:imagemagick:imagemagick:6.7.8-3:*:*:*:*:*:*:* | ||
| cpe:2.3:a:imagemagick:imagemagick:6.7.8-4:*:*:*:*:*:*:* | ||
| cpe:2.3:a:imagemagick:imagemagick:6.7.8-5:*:*:*:*:*:*:* | ||
| cpe:2.3:a:imagemagick:imagemagick:6.7.8-6:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=721273
- http://secunia.com/advisories/54581
- http://secunia.com/advisories/54671
- http://www.debian.org/security/2013/dsa-2750
- http://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=23921
- http://www.imagemagick.org/script/changelog.php
- http://www.ubuntu.com/usn/USN-1949-1
- https://bugs.launchpad.net/ubuntu/+source/imagemagick/+bug/1218248
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=721273
- http://secunia.com/advisories/54581
- http://secunia.com/advisories/54671
- http://www.debian.org/security/2013/dsa-2750
- http://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=23921
- http://www.imagemagick.org/script/changelog.php
- http://www.ubuntu.com/usn/USN-1949-1
- https://bugs.launchpad.net/ubuntu/+source/imagemagick/+bug/1218248