Home

CVE-2017-11141

Description

The ReadMATImage function in codersmat.c in ImageMagick 7.0.5-6 has a memory leak vulnerability that can cause memory exhaustion via a crafted MAT file, related to incorrect ordering of a SetImageExtent call.

Risk Information

Base Score
6.5
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.594

Associated Vulnerability

VulnerabilityOS Platform
Multiple Vulnerabilities are affected in Imagemagic (x64) 7.0.5Windows
Multiple Vulnerabilities are affected in Imagemagic 7.0.5Windows
Multiple Vulnerabilities are affected in ImageMagick 7.0.5Windows
Image manipulation programs and library (USN-3302-1) libmagick++-6.q16-7_6.9.7.4+dfsg-3ubuntu1.2_i386.debLinux
Image manipulation programs and library (USN-3302-1) libmagick++-6.q16-7_6.9.7.4+dfsg-3ubuntu1.2_amd64.debLinux
Image manipulation programs and library (USN-3302-1) libmagickcore-6.q16-3_6.9.7.4+dfsg-3ubuntu1.2_i386.debLinux
Image manipulation programs and library (USN-3302-1) libmagickcore-6.q16-3_6.9.7.4+dfsg-3ubuntu1.2_amd64.debLinux
Imagemagick 6.9.7.4 dfsg-3ubuntu1.1 for Ubuntu 17.04 (x64) imagemagick_6.9.7.4+dfsg-3ubuntu1.2_amd64.debLinux
Imagemagick 6.9.7.4 dfsg-3ubuntu1.1 for Ubuntu 17.04 imagemagick_6.9.7.4+dfsg-3ubuntu1.2_i386.debLinux
Image manipulation programs and library (USN-3363-1) imagemagick_6.7.7.10-6ubuntu3.8_i386.debLinux
Image manipulation programs and library (USN-3363-1) imagemagick_6.9.7.4+dfsg-3ubuntu1.2_i386.debLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234