CVE-2017-14989
03.10.2017, 01:29
A use-after-free in RenderFreetype in MagickCore/annotate.c in ImageMagick 7.0.7-4 Q16 allows attackers to crash the application via a crafted font file, because the FT_Done_Glyph function (from FreeType 2) is called at an incorrect place in the ImageMagick code.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| imagemagick | imagemagick | 7.0.7-4 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
openSUSE / SLES Releases
openSUSE Product | |||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| ImageMagick |
| ||||||||||||||||||||||||||||||
| ImageMagick-config-6-SUSE |
| ||||||||||||||||||||||||||||||
| ImageMagick-config-6-upstream |
| ||||||||||||||||||||||||||||||
| libMagick++-6_Q16-3 |
| ||||||||||||||||||||||||||||||
| libMagickCore-6_Q16-1 |
| ||||||||||||||||||||||||||||||
| libMagickCore-6_Q16-1-32bit |
| ||||||||||||||||||||||||||||||
| libMagickWand-6_Q16-1 |
|
Common Weakness Enumeration
References