CVE-2017-18028

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
12/01/2018
Last modified:
03/10/2019

Description

In ImageMagick 7.0.7-1 Q16, a memory exhaustion vulnerability was found in the function ReadTIFFImage in coders/tiff.c, which allow remote attackers to cause a denial of service via a crafted file.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:imagemagick:imagemagick:7.0.7-1:q16:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*