Medium severity5.5NVD Advisory· Published Jul 2, 2017· Updated Jun 17, 2026
CVE-2017-10794
CVE-2017-10794
Description
When GraphicsMagick 1.3.25 processes an RGB TIFF picture (with metadata indicating a single sample per pixel) in coders/tiff.c, a buffer overflow occurs, related to QuantumTransferMode.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5cpe:2.3:a:graphicsmagick:graphicsmagick:1.3.25:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:graphicsmagick:graphicsmagick:1.3.25:*:*:*:*:*:*:*
- (no CPE)range: <=1.3.25
- osv-coords3 versionspkg:rpm/opensuse/GraphicsMagick&distro=openSUSE%20Tumbleweedpkg:rpm/suse/GraphicsMagick&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4pkg:rpm/suse/GraphicsMagick&distro=SUSE%20Studio%20Onsite%201.3
< 1.3.36-1.7+ 2 more
- (no CPE)range: < 1.3.36-1.7
- (no CPE)range: < 1.2.5-78.78.1
- (no CPE)range: < 1.2.5-78.78.1
Patches
Vulnerability mechanics
References
4- sourceforge.net/p/graphicsmagick/code/ci/a20bee0a0ad216aa11a2be3de63b60ca6bef4106/nvdPatchThird Party Advisory
- www.securityfocus.com/bid/99355nvdThird Party AdvisoryVDB Entry
- usn.ubuntu.com/4206-1/nvd
- www.debian.org/security/2018/dsa-4321nvd
News mentions
0No linked articles in our index yet.