CVSS: 8.8EPSS: 0%CPEs: 4EXPL: 0CVE-2017-17782 – Ubuntu Security Notice USN-4248-1
https://notcve.org/view.php?id=CVE-2017-17782
20 Dec 2017 — In GraphicsMagick 1.3.27a, there is a heap-based buffer over-read in ReadOneJNGImage in coders/png.c, related to oFFs chunk allocation. En GraphicsMagick 1.3.27a, hay una sobrelectura de búfer basada en memoria dinámica (heap) en ReadOneJNGImage en coders/png. c. Esto está relacionado con la asignación de chunks oFFs. It was discovered that GraphicsMagick incorrectly handled certain image files. An attacker could possibly use this issue to cause a denial of service or other unspecified impact. • http://hg.graphicsmagick.org/hg/GraphicsMagick?cmd=changeset%3Bnode=8e3d2264109c • CWE-125: Out-of-bounds Read •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2017-17783
https://notcve.org/view.php?id=CVE-2017-17783
20 Dec 2017 — In GraphicsMagick 1.3.27a, there is a buffer over-read in ReadPALMImage in coders/palm.c when QuantumDepth is 8. En GraphicsMagick 1.3.27a, existe una sobrelectura de búfer en ReadPALMImage en coders/palm.c cuando QuantumDepth es 8. • http://hg.graphicsmagick.org/hg/GraphicsMagick?cmd=changeset%3Bnode=60932931559a • CWE-125: Out-of-bounds Read •