CVE-2019-11474
published 2019-04-23CVE-2019-11474: coders/xwd.c in GraphicsMagick 1.3.31 allows attackers to cause a denial of service (floating-point exception and application crash) by crafting an XWD image…
medium6.5CVSS 3.1
AVNACLPRNUIRSUCNINAH
coders/xwd.c in GraphicsMagick 1.3.31 allows attackers to cause a denial of service (floating-point exception and application crash) by crafting an XWD image file, a different vulnerability than CVE-2019-11008 and CVE-2019-11009.
Affected
15 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | graphicsmagick | < graphicsmagick 1.4~hg15976-1 (bookworm) | graphicsmagick 1.4~hg15976-1 (bookworm) |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| graphicsmagick | graphicsmagick | — | — |
| graphicsmagick | graphicsmagick | >= 0 < 1.4~hg15976-1 | 1.4~hg15976-1 |
| graphicsmagick | graphicsmagick | >= 0 < 1.4~hg15976-1 | 1.4~hg15976-1 |
| graphicsmagick | graphicsmagick | >= 0 < 1.4~hg15976-1 | 1.4~hg15976-1 |
| graphicsmagick | graphicsmagick | >= 0 < 1.4~hg15976-1 | 1.4~hg15976-1 |
| opensuse | backports_sle | — | — |
| opensuse | leap | — | — |
| opensuse | leap | — | — |
CVSS provenance
nvdv3.16.5MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
osv8.8HIGH