Home

CVE-2017-1000476

Description

ImageMagick 7.0.7-12 Q16, a CPU exhaustion vulnerability was found in the function ReadDDSInfo in coders/dds.c, which allows attackers to cause a denial of service.

Risk Information

Base Score
6.5
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.679

Associated Vulnerability

VulnerabilityOS Platform
Multiple Vulnerabilities are affected in Imagemagic (x64) 7.0.7Windows
Multiple Vulnerabilities are affected in Imagemagic 7.0.7Windows
Multiple Vulnerabilities are affected in ImageMagick 7.0.7Windows
Image manipulation programs and library (USN-3363-2) imagemagick_6.8.9.9-7ubuntu5.11_amd64.debLinux
Image manipulation programs and library (USN-3363-2) imagemagick_6.7.7.10-6ubuntu3.11_amd64.debLinux
Image manipulation programs and library (USN-3363-2) libmagick++5_6.7.7.10-6ubuntu3.11_amd64.debLinux
Image manipulation programs and library (USN-3222-1) imagemagick_6.8.9.9-7ubuntu5.11_amd64.debLinux
Image manipulation programs and library (USN-3222-1) imagemagick_6.7.7.10-6ubuntu3.11_amd64.debLinux
Image manipulation programs and library (USN-3222-1) libmagick++5_6.7.7.10-6ubuntu3.11_amd64.debLinux
Image manipulation programs and library (USN-3681-1) imagemagick_6.8.9.9-7ubuntu5.11_i386.debLinux
Image manipulation programs and library (USN-3681-1) imagemagick_6.7.7.10-6ubuntu3.11_i386.debLinux
Image manipulation programs and library (USN-3681-1) imagemagick_6.9.7.4+dfsg-16ubuntu2.2_i386.debLinux
Image manipulation programs and library (USN-3681-1) imagemagick_6.9.7.4+dfsg-16ubuntu2.2_amd64.debLinux
Image manipulation programs and library (USN-3681-1) imagemagick_6.9.7.4+dfsg-16ubuntu6.2_i386.debLinux
Image manipulation programs and library (USN-3681-1) imagemagick_6.9.7.4+dfsg-16ubuntu6.2_amd64.debLinux
Image manipulation programs and library (USN-3681-1) libmagick++5_6.7.7.10-6ubuntu3.11_i386.debLinux
Image manipulation programs and library (USN-3681-1) libmagickcore5_6.7.7.10-6ubuntu3.11_i386.debLinux
Image manipulation programs and library (USN-3681-1) libmagickcore5_6.7.7.10-6ubuntu3.11_amd64.debLinux
Image manipulation programs and library (USN-3681-1) libmagick++-6.q16-7_6.9.7.4+dfsg-16ubuntu2.2_i386.debLinux
Image manipulation programs and library (USN-3681-1) libmagick++-6.q16-7_6.9.7.4+dfsg-16ubuntu2.2_amd64.debLinux
Image manipulation programs and library (USN-3681-1) libmagick++-6.q16-7_6.9.7.4+dfsg-16ubuntu6.2_i386.debLinux
Image manipulation programs and library (USN-3681-1) libmagick++-6.q16-7_6.9.7.4+dfsg-16ubuntu6.2_amd64.debLinux
Image manipulation programs and library (USN-3681-1) libmagickcore-6.q16-3_6.9.7.4+dfsg-16ubuntu2.2_i386.debLinux
Image manipulation programs and library (USN-3681-1) libmagickcore-6.q16-3_6.9.7.4+dfsg-16ubuntu2.2_amd64.debLinux
Image manipulation programs and library (USN-3681-1) libmagickcore-6.q16-3_6.9.7.4+dfsg-16ubuntu6.2_i386.debLinux
Image manipulation programs and library (USN-3681-1) libmagickcore-6.q16-3_6.9.7.4+dfsg-16ubuntu6.2_amd64.debLinux
Image manipulation programs and library (USN-3681-1) libmagickcore-6.q16-2_6.8.9.9-7ubuntu5.11_i386.debLinux
Image manipulation programs and library (USN-3681-1) libmagickcore-6.q16-2_6.8.9.9-7ubuntu5.11_amd64.debLinux
(RHSA-2020:1180) ImageMagick security, bug fix, and enhancement update autotrace-0.31.1-38.el7.i686.rpmLinux
(RHSA-2020:1180) ImageMagick security, bug fix, and enhancement update autotrace-0.31.1-38.el7.x86_64.rpmLinux
(RHSA-2020:1180) ImageMagick security, bug fix, and enhancement update autotrace-devel-0.31.1-38.el7.i686.rpmLinux
(RHSA-2020:1180) ImageMagick security, bug fix, and enhancement update autotrace-devel-0.31.1-38.el7.x86_64.rpmLinux
(RHSA-2020:1180) ImageMagick security, bug fix, and enhancement update inkscape-0.92.2-3.el7.x86_64.rpmLinux
(RHSA-2020:1180) ImageMagick security, bug fix, and enhancement update inkscape-docs-0.92.2-3.el7.x86_64.rpmLinux
(RHSA-2020:1180) ImageMagick security, bug fix, and enhancement update inkscape-view-0.92.2-3.el7.x86_64.rpmLinux
(RHSA-2020:1180) ImageMagick security, bug fix, and enhancement update ImageMagick-6.9.10.68-3.el7.i686.rpmLinux
(RHSA-2020:1180) ImageMagick security, bug fix, and enhancement update ImageMagick-6.9.10.68-3.el7.x86_64.rpmLinux
(RHSA-2020:1180) ImageMagick security, bug fix, and enhancement update ImageMagick-c++-6.9.10.68-3.el7.i686.rpmLinux
(RHSA-2020:1180) ImageMagick security, bug fix, and enhancement update ImageMagick-c++-6.9.10.68-3.el7.x86_64.rpmLinux
(RHSA-2020:1180) ImageMagick security, bug fix, and enhancement update ImageMagick-c++-devel-6.9.10.68-3.el7.i686.rpmLinux
(RHSA-2020:1180) ImageMagick security, bug fix, and enhancement update ImageMagick-c++-devel-6.9.10.68-3.el7.x86_64.rpmLinux
(RHSA-2020:1180) ImageMagick security, bug fix, and enhancement update ImageMagick-devel-6.9.10.68-3.el7.i686.rpmLinux
(RHSA-2020:1180) ImageMagick security, bug fix, and enhancement update ImageMagick-devel-6.9.10.68-3.el7.x86_64.rpmLinux
(RHSA-2020:1180) ImageMagick security, bug fix, and enhancement update ImageMagick-doc-6.9.10.68-3.el7.x86_64.rpmLinux
(RHSA-2020:1180) ImageMagick security, bug fix, and enhancement update ImageMagick-perl-6.9.10.68-3.el7.x86_64.rpmLinux
(RHSA-2020:1180) ImageMagick security, bug fix, and enhancement update emacs-24.3-23.el7.x86_64.rpmLinux
(RHSA-2020:1180) ImageMagick security, bug fix, and enhancement update emacs-common-24.3-23.el7.x86_64.rpmLinux
(RHSA-2020:1180) ImageMagick security, bug fix, and enhancement update emacs-el-24.3-23.el7.noarch.rpmLinux
(RHSA-2020:1180) ImageMagick security, bug fix, and enhancement update emacs-filesystem-24.3-23.el7.noarch.rpmLinux
(RHSA-2020:1180) ImageMagick security, bug fix, and enhancement update emacs-nox-24.3-23.el7.x86_64.rpmLinux
(RHSA-2020:1180) ImageMagick security, bug fix, and enhancement update emacs-terminal-24.3-23.el7.noarch.rpmLinux
(CESA-2020:1180) ImageMagick security, bug fix, and enhancement update autotrace-0.31.1-38.el7.x86_64.rpmLinux
(CESA-2020:1180) ImageMagick security, bug fix, and enhancement update autotrace-devel-0.31.1-38.el7.x86_64.rpmLinux
(CESA-2020:1180) ImageMagick security, bug fix, and enhancement update emacs-24.3-23.el7.x86_64.rpmLinux
(CESA-2020:1180) ImageMagick security, bug fix, and enhancement update emacs-common-24.3-23.el7.x86_64.rpmLinux
(CESA-2020:1180) ImageMagick security, bug fix, and enhancement update emacs-el-24.3-23.el7.noarch.rpmLinux
(CESA-2020:1180) ImageMagick security, bug fix, and enhancement update emacs-filesystem-24.3-23.el7.noarch.rpmLinux
(CESA-2020:1180) ImageMagick security, bug fix, and enhancement update emacs-nox-24.3-23.el7.x86_64.rpmLinux
(CESA-2020:1180) ImageMagick security, bug fix, and enhancement update emacs-terminal-24.3-23.el7.noarch.rpmLinux
(CESA-2020:1180) ImageMagick security, bug fix, and enhancement update inkscape-0.92.2-3.el7.x86_64.rpmLinux
(CESA-2020:1180) ImageMagick security, bug fix, and enhancement update inkscape-docs-0.92.2-3.el7.x86_64.rpmLinux
(CESA-2020:1180) ImageMagick security, bug fix, and enhancement update inkscape-view-0.92.2-3.el7.x86_64.rpmLinux
(RHSA-2020:1180)Moderate: security, bug fix, and enhancement update ImageMagick-debuginfo-6.9.10.68-3.el7.i686.rpmLinux
(RHSA-2020:1180)Moderate: security, bug fix, and enhancement update ImageMagick-debuginfo-6.9.10.68-3.el7.x86_64.rpmLinux
(RHSA-2020:1180)Moderate: security, bug fix, and enhancement update autotrace-debuginfo-0.31.1-38.el7.i686.rpmLinux
(RHSA-2020:1180)Moderate: security, bug fix, and enhancement update autotrace-debuginfo-0.31.1-38.el7.x86_64.rpmLinux
(RHSA-2020:1180)Moderate: security, bug fix, and enhancement update emacs-debuginfo-24.3-23.el7.x86_64.rpmLinux
(RHSA-2020:1180)Moderate: security, bug fix, and enhancement update inkscape-debuginfo-0.92.2-3.el7.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234