Security Advisory

CVE-2017-10928

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-07-05 11:00:00

Last updated 2024-08-05 17:50:12

Assigner mitre

State PUBLISHED

Description

In ImageMagick 7.0.6-0, a heap-based buffer over-read in the GetNextToken function in token.c allows remote attackers to obtain sensitive information from process memory or possibly have unspecified other impact via a crafted SVG document that is mishandled in the GetUserSpaceCoordinateValue function in coders/svg.c.

← Browse all CVEs View on cve.org ↗