Medium severity5.5NVD Advisory· Published Feb 3, 2017· Updated May 13, 2026
CVE-2016-2317
CVE-2016-2317
Description
Multiple buffer overflows in GraphicsMagick 1.3.23 allow remote attackers to cause a denial of service (crash) via a crafted SVG file, related to the (1) TracePoint function in magick/render.c, (2) GetToken function in magick/utility.c, and (3) GetTransformTokens function in coders/svg.c.
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
12- lists.opensuse.org/opensuse-security-announce/2016-07/msg00000.htmlnvdThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2016-07/msg00010.htmlnvdThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2016-08/msg00037.htmlnvdThird Party Advisory
- www.debian.org/security/2016/dsa-3746nvdThird Party Advisory
- www.openwall.com/lists/oss-security/2016/02/11/6nvdMailing ListThird Party Advisory
- www.openwall.com/lists/oss-security/2016/05/20/4nvdMailing ListThird Party Advisory
- www.openwall.com/lists/oss-security/2016/05/27/4nvdMailing ListThird Party Advisory
- www.openwall.com/lists/oss-security/2016/05/31/3nvdMailing ListThird Party Advisory
- www.openwall.com/lists/oss-security/2016/09/07/4nvdMailing ListThird Party Advisory
- www.openwall.com/lists/oss-security/2016/09/18/8nvdMailing ListThird Party Advisory
- www.securityfocus.com/bid/83241nvdThird Party AdvisoryVDB Entry
- bugzilla.redhat.com/show_bug.cginvdIssue Tracking
News mentions
0No linked articles in our index yet.