CVE-2017-11754

ADVISORY - nist

Summary

The WritePICONImage function in coders/xpm.c in ImageMagick 7.0.6-4 allows remote attackers to cause a denial of service (memory leak) via a crafted file that is mishandled in an OpenPixelCache call.

EPSS Score⁠: 0.00139 (0.504)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-772⁠

Missing Release of Resource after Effective Lifetime

ADVISORY - redhat

CWE-401⁠

Missing Release of Memory after Effective Lifetime

Impacted images

Advisories

Sign in to Docker Scout

See which of your images are affected by this CVE and how to fix them by signing into Docker Scout.