公告ID: |
KYLIN-2019-13304 |
安全等级: |
中等 |
产品: |
Kylin V3 |
发布日期: |
2019年7月16日 |
CVE: |
CVE-2019-13304 |
CVSS3评分: |
8.8 |
概述:
None
描述:
ImageMagick 7.0.8-50 Q16 has a stack-based buffer overflow at coders/pnm.c in WritePNMImage because of a misplaced assignment.
A stack-based buffer overflow was discovered in ImageMagick in the way it writes PNM images due to a misplaced assignment. Applications compiled against ImageMagick libraries that accept untrustworthy images or write PNM images may be vulnerable to this flaw. An attacker could abuse this flaw by providing a specially crafted image to make the application crash or potentially execute code.
系统版本:
KYLIN 3.0.x
KYLIN 3.2.x
KYLIN 3.3.x
受影响包列表:
ImageMagick
ImageMagick
ImageMagick