Missing Release of Resource after Effective Lifetime in imagemagick | Snyk

Do your applications use this vulnerable package? Test your applications

Overview

ImageMagick version 7.0.7-2 contains a memory leak in ReadYUVImage in coders/yuv.c.

References

Attack Vector

Network
Attack Complexity

Low
Privileges Required

None
User Interaction

None
Scope

Unchanged
Confidentiality

None
Integrity

None
Availability

High

CVE: CVE-2017-15033
CWE: CWE-772
Snyk ID: SNYK-DEBIAN8-IMAGEMAGICK-401700
Disclosed: 05 Oct, 2017
Published: 05 Oct, 2017