公告ID: KYLIN-2019-13310
安全等级: 低级
产品: Kylin V3
发布日期: 2019年7月16日
CVE: CVE-2019-13310
CVSS3评分: 5.3
概述:
None 描述:
ImageMagick 7.0.8-50 Q16 has memory leaks at AcquireMagickMemory because of an error in MagickWand/mogrify.c. A flaw was found in ImageMagick version 7.0.8-50 Q16, containing memory leaks of AcquireMagickMemory due to an error found in MagickWand/mogrify.c. It was discovered that ImageMagick does not properly release acquired memory when some error conditions occur in the function MogrifyImageList(). Applications compiled against ImageMagick libraries that accept untrustworthy images may be exploited to use all available memory and make them crash. An attacker could abuse this flaw by providing a specially crafted image and cause a Denial of Service by using all available memory. 系统版本:
KYLIN 3.3.x
受影响包列表:
ImageMagick