Vulnerability & Exploit Database

Back to search

Oracle Solaris 11: CVE-2018-18023: Vulnerability in ImageMagick

Severity CVSS Published Added Modified
4 (AV:N/AC:M/Au:N/C:N/I:N/A:P) October 07, 2018 December 17, 2018 December 17, 2018

Description

In ImageMagick 7.0.8-13 Q16, there is a heap-based buffer over-read in the SVGStripString function of coders/svg.c, which allows attackers to cause a denial of service via a crafted SVG image file.

Scan For This Vulnerability

Use our top-rated tool to discover, prioritize, and remediate your vulnerabilities

 Free InsightVM Trial

References

Solution

oracle-solaris-11-4-upgrade-image-imagemagick-6-9-10-14-11-4-4-0-1-3-0