CVE-2012-3438

描述

The Magick_png_malloc function in coders/png.c in GraphicsMagick 6.7.8-6 does not use the proper variable type for the allocation size, which might allow remote attackers to cause a denial of service (crash) via a crafted PNG file that triggers incorrect memory allocation.

受影響套件(1)

• Debian/graphicsmagickfrom 0, < 1.3.16-1.1

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2012-3438