CVE-2017-14103
Last modified
CVE-2017-14103 is a vulnerability of currently unknown severity. The ReadJNGImage and ReadOneJNGImage functions in coders/png.c in GraphicsMagick 1.3.26 do not properly manage image pointers after certain error conditions, which allows remote attackers to conduct use-after-free attacks via a crafted file, related to a ReadMNGImage out-of-order CloseBlob call. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-11403.. EPSS estimates a 30.25% chance of exploitation in the next 30 days.
Description
The ReadJNGImage and ReadOneJNGImage functions in coders/png.c in GraphicsMagick 1.3.26 do not properly manage image pointers after certain error conditions, which allows remote attackers to conduct use-after-free attacks via a crafted file, related to a ReadMNGImage out-of-order CloseBlob call. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-11403.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Graphicsmagick | Graphicsmagick | 1.3.26 |
References
- http://hg.code.sf.net/p/graphicsmagick/code/rev/98721124e51fIssue Tracking, Patch, Third Party Advisory
- https://blogs.gentoo.org/ago/2017/09/01/graphicsmagick-use-after-free-in-closeblob-blob-c-incomplete-fix-for-cve-2017-11403/Patch, Third Party Advisory, VDB Entry
- http://hg.code.sf.net/p/graphicsmagick/code/rev/98721124e51fIssue Tracking, Patch, Third Party Advisory
- https://blogs.gentoo.org/ago/2017/09/01/graphicsmagick-use-after-free-in-closeblob-blob-c-incomplete-fix-for-cve-2017-11403/Patch, Third Party Advisory, VDB Entry
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2017-14103?
How severe is CVE-2017-14103?
How do I fix CVE-2017-14103?
Are you affected by CVE-2017-14103?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST