Executive Summary

Informations
NameCVE-2017-10799First vendor Publication2017-07-02
VendorCveLast vendor Modification2019-04-15

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:N/I:N/A:P)
Cvss Base Score4.3Attack RangeNetwork
Cvss Impact Score2.9Attack ComplexityMedium
Cvss Expoit Score8.6AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

When GraphicsMagick 1.3.25 processes a DPX image (with metadata indicating a large width) in coders/dpx.c, a denial of service (OOM) can occur in ReadDPXImage().

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10799

CWE : Common Weakness Enumeration

%idName
100 %CWE-400Uncontrolled Resource Consumption ('Resource Exhaustion')

CPE : Common Platform Enumeration

TypeDescriptionCount
Application1

Nessus® Vulnerability Scanner

DateDescription
2018-10-18Name : The remote Debian host is missing a security-related update.
File : debian_DSA-4321.nasl - Type : ACT_GATHER_INFO
2018-06-21Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_25f73c4768a84a309cbc1ca5eea4d6ba.nasl - Type : ACT_GATHER_INFO
2017-12-14Name : The remote openSUSE host is missing a security update.
File : openSUSE-2017-1362.nasl - Type : ACT_GATHER_INFO
2017-07-31Name : The remote Debian host is missing a security update.
File : debian_DLA-1045.nasl - Type : ACT_GATHER_INFO
2017-07-21Name : The remote Fedora host is missing a security update.
File : fedora_2017-fba331bb86.nasl - Type : ACT_GATHER_INFO
2017-07-17Name : The remote Fedora host is missing a security update.
File : fedora_2017-02008fed70.nasl - Type : ACT_GATHER_INFO
2017-07-13Name : The remote Fedora host is missing a security update.
File : fedora_2017-3ac2e9b354.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

SourceUrl
BID http://www.securityfocus.com/bid/99358
CONFIRM http://hg.code.sf.net/p/graphicsmagick/code/rev/f10b9bb3ca62
DEBIAN https://www.debian.org/security/2018/dsa-4321
MLIST https://lists.debian.org/debian-lts-announce/2019/04/msg00015.html

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
DateInformations
2019-04-15 17:18:45
  • Multiple Updates
2018-10-18 17:19:46
  • Multiple Updates
2017-12-15 13:23:45
  • Multiple Updates
2017-08-02 13:24:44
  • Multiple Updates
2017-07-22 13:24:21
  • Multiple Updates
2017-07-18 13:24:51
  • Multiple Updates
2017-07-14 13:24:51
  • Multiple Updates
2017-07-05 17:23:19
  • Multiple Updates
2017-07-05 09:23:01
  • Multiple Updates
2017-07-03 09:23:08
  • First insertion