Medium severity6.5NVD Advisory· Published Jul 17, 2017· Updated Jun 17, 2026
CVE-2017-11352
CVE-2017-11352
Description
In ImageMagick before 7.0.5-10, a crafted RLE image can trigger a crash because of incorrect EOF handling in coders/rle.c. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-9144.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
7cpe:2.3:a:imagemagick:imagemagick:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:imagemagick:imagemagick:*:*:*:*:*:*:*:*range: <6.9.8-9
- (no CPE)range: <7.0.5-10
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*+ 3 more
- cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
Patches
Vulnerability mechanics
References
5- bugs.debian.org/868469nvdIssue TrackingPatchThird Party Advisory
- github.com/ImageMagick/ImageMagick/issues/502nvdIssue TrackingPatchThird Party Advisory
- www.securityfocus.com/bid/99600nvdThird Party AdvisoryVDB Entry
- usn.ubuntu.com/3681-1/nvdThird Party Advisory
- www.debian.org/security/2017/dsa-4040nvdThird Party Advisory
News mentions
0No linked articles in our index yet.