#VU9808 Heap-based buffer overread in GraphicsMagick - CVE-2017-14733


Vulnerability identifier: #VU9808

Vulnerability risk: Low

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2017-14733

CWE-ID: CWE-126

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
GraphicsMagick
Universal components / Libraries / Libraries used by multiple products

Vendor: GraphicsMagick Group

Description
The vulnerability allows a remote attacker to cause DoS condition on the target system.

The weakness exists due to ReadRLEImage in coders/rle.c mishandles RLE headers that specify too few colors. A remote attacker can provide a specially crafted RLE document, trigger heap-based buffer over-read and cause the application to crash.

Successful exploitation of the vulnerability results in denial of service.

Mitigation
Install update from vendor's website.

Vulnerable software versions

GraphicsMagick: 1.3.26

External links
https://hg.graphicsmagick.org/hg/GraphicsMagick?cmd=changeset;node=5381c71724e3

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Fedora EPEL 7 update for GraphicsMagick
Fedora EPEL 8 update for GraphicsMagick
Fedora 29 update for GraphicsMagick
Fedora 30 update for GraphicsMagick
openSUSE update for ImageMagick
SUSE Linux update for ImageMagick
SUSE Linux update for ImageMagick
OpenSUSE Linux update for GraphicsMagick
Heap-based buffer overread in graphicsmagick (Alpine package)