CVE-2017-11166
MEDIUM6.5EPSS 0.18%發布日:2017/7/10修改日:2026/4/28
也稱為:DEBIAN-CVE-2017-11166
描述
The ReadXWDImage function in coders\xwd.c in ImageMagick 7.0.5-6 has a memory leak vulnerability that can cause memory exhaustion via a crafted length (number of color-map entries) field in the header of an XWD file.
受影響套件(1)
- Debian/imagemagickfrom 0, < 8:6.9.7.4+dfsg-7
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM6.5 | CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H |