Medium severity6.5NVD Advisory· Published Aug 7, 2017· Updated May 13, 2026
CVE-2017-12643
CVE-2017-12643
Description
ImageMagick 7.0.6-1 has a memory exhaustion vulnerability in ReadOneJNGImage in coders\png.c.
Affected products
3- cpe:2.3:a:imagemagick:imagemagick:7.0.6-1:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
6- github.com/ImageMagick/ImageMagick/commit/d9ccd8227c4c88a907cda5278408b73552cb0c07nvdPatchVendor Advisory
- github.com/ImageMagick/ImageMagick/issues/549nvdIssue TrackingPatchVendor Advisory
- www.securityfocus.com/bid/100218nvdThird Party AdvisoryVDB Entry
- lists.debian.org/debian-lts-announce/2019/05/msg00015.htmlnvdThird Party Advisory
- lists.debian.org/debian-lts-announce/2020/09/msg00007.htmlnvdThird Party Advisory
- usn.ubuntu.com/3681-1/nvdThird Party Advisory
News mentions
0No linked articles in our index yet.