CyberSec.Space Logo
Back to CVE Browser

CVE-2017-11636

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1250%
EPSS Percentile8.45th
PublishedJul 26, 2017
Last ModifiedMay 13, 2026

Vulnerability Description

GraphicsMagick 1.3.26 has a heap overflow in the WriteRGBImage() function in coders/rgb.c when processing multiple frames that have non-identical widths.

Affected Platforms (CPE)

πŸ“¦
Graphicsmagick

Graphicsmagick

= 1.3.26

References & Advisories

πŸ”— http://hg.code.sf.net/p/graphicsmagick/code/rev/39961adf974c
πŸ”— http://www.securityfocus.com/bid/99978
πŸ”— https://lists.debian.org/debian-lts-announce/2018/06/msg00009.html
πŸ”— https://usn.ubuntu.com/4206-1/
πŸ”— https://www.debian.org/security/2018/dsa-4321
πŸ”— http://hg.code.sf.net/p/graphicsmagick/code/rev/39961adf974c
πŸ”— http://www.securityfocus.com/bid/99978
πŸ”— https://lists.debian.org/debian-lts-announce/2018/06/msg00009.html

Related Vulnerabilities

CVE-2008-607110.0

Heap-based buffer overflow in the DecodeImage function in coders/pict.c in GraphicsMagick before 1.1.14, and 1.2.x before 1.2.3, a...

CVE-2017-116419.8

GraphicsMagick 1.3.26 has a Memory Leak in the PersistCache function in magick/pixel_cache.c during writing of Magick Persistent C...

CVE-2017-111399.8

GraphicsMagick 1.3.26 has double free vulnerabilities in the ReadOneJNGImage() function in coders/png.c.

CVE-2017-116379.8

GraphicsMagick 1.3.26 has a NULL pointer dereference in the WritePCLImage() function in coders/pcl.c during writes of monochrome i...

CVE-2017-11636 Detail & Impact Analysis | CVSS 9.8 (CRITICAL) | Cyber-Sec.Space | Cyber-Sec.Space