CVE-2017-18230

Description

An issue was discovered in GraphicsMagick 1.3.26. A NULL pointer dereference vulnerability was found in the function ReadCINEONImage in coders/cineon.c, which allows attackers to cause a denial of service via a crafted file.

References

https://www.debian.org/security/2018/dsa-4321

https://usn.ubuntu.com/4266-1/

https://sourceforge.net/p/graphicsmagick/bugs/473/

https://lists.debian.org/debian-lts-announce/2018/08/msg00002.html

https://lists.debian.org/debian-lts-announce/2018/03/msg00025.html

http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/53a4d841e90f

Details

Source: Mitre, NVD

Risk Information

CVSS v2

CVSS v3