CVE-2017-14989 - A use-after-free in RenderFreetype in MagickCore/annotate.c in ImageMagick 7.0.7-4 Q16 allows attack

CVE-2017-14989

Summary

A use-after-free in RenderFreetype in MagickCore/annotate.c in ImageMagick 7.0.7-4 Q16 allows attackers to crash the application via a crafted font file, because the FT_Done_Glyph function (from FreeType 2) is called at an incorrect place in the ImageMagick code.

References

https://github.com/ImageMagick/ImageMagick/issues/781
https://usn.ubuntu.com/3681-1/
https://www.debian.org/security/2017/dsa-4032
https://www.debian.org/security/2017/dsa-4040

Vulnerable Configurations

cpe:2.3:a:imagemagick:imagemagick:7.0.7-4:*:*:*:*:*:*:*
cpe:2.3:a:imagemagick:imagemagick:7.0.7-4:*:*:*:*:*:*:*

CVSS

Base:	4.3 (as of 14-06-2018 - 01:29)
Impact:
Exploitability:

CWE

CWE-416

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:N/AC:M/Au:N/C:N/I:N/A:P

refmap via4

confirm	https://github.com/ImageMagick/ImageMagick/issues/781
debian	DSA-4032 DSA-4040
ubuntu	USN-3681-1

Last major update

14-06-2018 - 01:29

Published

03-10-2017 - 01:29

Last modified

14-06-2018 - 01:29