CVE-2017-14172
Description
In coders/ps.c in ImageMagick 7.0.7-0 Q16, a DoS in ReadPSImage() due to lack of an EOF (End of File) check might cause huge CPU consumption. When a crafted PSD file, which claims a large "extent" field in the header but does not contain sufficient backing data, is provided, the loop over "length" would consume huge CPU resources, since there is no EOF check inside the loop.
Predictions
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2017-14172
Vendor advisory: suse — https://www.suse.com/security/cve/CVE-2017-14172.html
Vendor advisory: cve@mitre.org — https://github.com/ImageMagick/ImageMagick/issues/715
Vendor advisory: cve@mitre.org — https://github.com/ImageMagick/ImageMagick/commit/bdbbb13f1fe9b7e2465502c500561720f7456aac
OS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| sles | affected | | |
| debian | bookworm | fixed | 8:6.9.9.34+dfsg-3 |
| debian | bullseye | fixed | 8:6.9.9.34+dfsg-3 |
| debian | forky | fixed | 8:6.9.9.34+dfsg-3 |
| debian | sid | fixed | 8:6.9.9.34+dfsg-3 |
| debian | trixie | fixed | 8:6.9.9.34+dfsg-3 |
| debian | 8.0 | affected | |
| debian | 9.0 | affected | |
| ubuntu | 14.04 | affected | |
| ubuntu | 16.04 | affected | |
| ubuntu | 17.10 | affected | |
| ubuntu | 18.04 | affected | |
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| imagemagick | imagemagick | 7.0.7-0 | |
References
- https://github.com/ImageMagick/ImageMagick/commit/bdbbb13f1fe9b7e2465502c500561720f7456aac
- https://github.com/ImageMagick/ImageMagick/issues/715
- https://lists.debian.org/debian-lts-announce/2019/05/msg00015.html
- https://lists.debian.org/debian-lts-announce/2020/09/msg00007.html
- https://security.gentoo.org/glsa/201711-07
- https://usn.ubuntu.com/3681-1/
- https://www.suse.com/security/cve/CVE-2017-14172.html
- https://security-tracker.debian.org/tracker/CVE-2017-14172
CWEs
CWE-834
Verify integrity in audit chain (admin only). AS-IS.