Note:
This project will be discontinued after December 13, 2021. [more]
2018-03-25
In GraphicsMagick 1.3.28, there is a divide-by-zero in the ReadMNGImage function of coders/png.c. Remote attackers could leverage this vulnerability to cause a crash and denial of service via a crafted mng file.
Products | Debian_linux, Graphicsmagick |
Type | Divide By Zero (CWE-369) |
First patch | - None (likely due to unavailable code) |
Links |
• https://lists.debian.org/debian-lts-announce/2018/03/msg00025.html
• https://sourceforge.net/p/graphicsmagick/bugs/554/ • http://www.securityfocus.com/bid/103526 • https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3IYH7QSNXXOIDFTYLY455ANZ3JWQ7FCS/ • https://www.debian.org/security/2018/dsa-4321 |