CyberSec.Space Logo
Back to CVE Browser

CVE-2017-14532

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1940%
EPSS Percentile26.60th
PublishedSep 18, 2017
Last ModifiedMay 13, 2026

Vulnerability Description

ImageMagick 7.0.7-0 has a NULL Pointer Dereference in TIFFIgnoreTags in coders/tiff.c.

Affected Platforms (CPE)

πŸ“¦
Imagemagick

Imagemagick

= 7.0.7-0
πŸ’»
Canonical

Ubuntu Linux

= 14.04
πŸ’»
Canonical

Ubuntu Linux

= 16.04
πŸ’»
Canonical

Ubuntu Linux

= 17.10
πŸ’»
Canonical

Ubuntu Linux

= 18.04

References & Advisories

πŸ”— http://www.securityfocus.com/bid/100883
πŸ”— https://github.com/ImageMagick/ImageMagick/issues/719
πŸ”— https://lists.debian.org/debian-lts-announce/2019/05/msg00015.html
πŸ”— https://lists.debian.org/debian-lts-announce/2020/09/msg00007.html
πŸ”— https://usn.ubuntu.com/3681-1/
πŸ”— http://www.securityfocus.com/bid/100883
πŸ”— https://github.com/ImageMagick/ImageMagick/issues/719
πŸ”— https://lists.debian.org/debian-lts-announce/2019/05/msg00015.html

Related Vulnerabilities

CVE-2004-098110.0

Buffer overflow in the EXIF parsing routine in ImageMagick before 6.1.0 allows remote attackers to execute arbitrary code via a ce...

CVE-2017-146249.8

ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function PostscriptDelegateMessage in coders/ps.c.

CVE-2017-131399.8

In ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1, the ReadOneMNGImage function in coders/png.c has an out-of-bounds read with ...

CVE-2017-141389.8

ImageMagick 7.0.6-5 has a memory leak vulnerability in ReadWEBPImage in coders/webp.c because memory is not freed in certain error...