[Bug 222621] security/vuxml: Security Vulnerability in ImageMagick (CVE-2017-14741)
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Tue Sep 26 11:48:59 UTC 2017
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=222621
Bug ID: 222621
Summary: security/vuxml: Security Vulnerability in ImageMagick
(CVE-2017-14741)
Product: Ports & Packages
Version: Latest
Hardware: Any
URL: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-201
7-14741
OS: Any
Status: New
Keywords: patch, security
Severity: Affects Some People
Priority: ---
Component: Individual Port(s)
Assignee: ports-secteam at FreeBSD.org
Reporter: vlad-fbsd at acheronmedia.com
CC: kwm at FreeBSD.org
Flags: maintainer-feedback?(ports-secteam at FreeBSD.org)
Assignee: ports-secteam at FreeBSD.org
Created attachment 186737
--> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=186737&action=edit
Document CVE-2017-14741
The ReadCAPTIONImage function in coders/caption.c in ImageMagick 7.0.7-3 allows
remote attackers to cause a denial of service (infinite loop) via a crafted
font file.
However, since upstream contains a commit for the ImageMagick-6 branch (which
hasn't been tagged for update) as well, I'm adding it too.
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-ports-bugs
mailing list