Bug 1056768 – VUL-2: CVE-2017-14060: GraphicsMagick,ImageMagick: NULL Pointer Dereference issue in the ReadCUTImage function in coders/cut.c that could cause a Denial of Service

Bug 1056768 - (CVE-2017-14060) VUL-2: CVE-2017-14060: GraphicsMagick,ImageMagick: NULL Pointer Dereference issue in the ReadCUTImage function in coders/cut.c that could cause a Denial of Service

(CVE-2017-14060)
Summary:	VUL-2: CVE-2017-14060: GraphicsMagick,ImageMagick: NULL Pointer Dereference i...

Status:	RESOLVED FIXED

Classification:	Novell Products
Product:	SUSE Security Incidents
Classification:	Novell Products
Component:	Incidents
Version:	unspecified
Hardware:	Other Other

Priority:	P3 - Medium Severity: Normal
Target Milestone:	---
Assigned To:	Security Team bot
QA Contact:	Security Team bot

URL:	https://smash.suse.de/issue/191331/
Whiteboard:	CVSSv2:SUSE:CVE-2017-14060:5.0:(AV:N...
Keywords:

Depends on:
Blocks:
	Show dependency tree / graph

Create test case

Clone This Bug

Reported:	2017-09-01 07:21 UTC by Alexander Bergmann
Modified:	2020-06-11 20:32 UTC (History)
CC List:	1 user (show)

See Also:
Found By:	Security Response Team
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Alexander Bergmann 2017-09-01 07:21:38 UTC

CVE-2017-14060

In ImageMagick 7.0.6-10, a NULL Pointer Dereference issue is present in
the ReadCUTImage function in coders/cut.c that could allow an attacker
to cause a Denial of Service (in the QueueAuthenticPixelCacheNexus
function within the MagickCore/cache.c file) by submitting a malformed
image file.

Upstream issue:
https://github.com/ImageMagick/ImageMagick/issues/710

Upstream fix:
https://github.com/ImageMagick/ImageMagick/commit/5bdfef29f5e6744f36f25ec04583c6b6f4a13b48

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-14060
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14060

Comment 1 Marcus Meissner 2017-09-29 09:13:08 UTC

not controllable abort (NULL Ptr crash). deferable.

Comment 2 Petr Gajdos 2018-02-13 09:19:13 UTC

No testcase available.

Comment 3 Petr Gajdos 2018-02-13 09:37:49 UTC

12/ImageMagick: affected
11/ImageMagick: not affected
11/GraphicsMagick: not affected
42.3/GraphicsMagick: affected
HG/GraphicsMagick: not affected

Comment 4 Petr Gajdos 2018-02-13 09:52:17 UTC

Will submit for 12/ImageMagick and 42.3/GraphicsMagick.

Comment 5 Petr Gajdos 2018-02-16 19:16:42 UTC

Packages submitted.

Comment 6 Swamp Workflow Management 2018-02-16 21:40:13 UTC

This is an autogenerated message for OBS integration:
This bug (1056768) was mentioned in
https://build.opensuse.org/request/show/577368 42.3 / GraphicsMagick

Comment 7 Swamp Workflow Management 2018-02-20 17:16:26 UTC

openSUSE-SU-2018:0496-1: An update that fixes 5 vulnerabilities is now available.

Category: security (moderate)
Bug References: 1050617,1050669,1056768,1072934
CVE References: CVE-2017-11637,CVE-2017-11638,CVE-2017-11642,CVE-2017-14060,CVE-2017-17503
Sources used:
openSUSE Leap 42.3 (src):    GraphicsMagick-1.3.25-71.1

Comment 8 Swamp Workflow Management 2018-03-01 20:18:11 UTC

SUSE-SU-2018:0581-1: An update that fixes 35 vulnerabilities is now available.

Category: security (moderate)
Bug References: 1042824,1042911,1048110,1048272,1049374,1049375,1050048,1050119,1050122,1050126,1050132,1050617,1052207,1052248,1052251,1052254,1052472,1052688,1052711,1052747,1052750,1052754,1052761,1055069,1055229,1056768,1057163,1058009,1072898,1074119,1074170,1075821,1076182,1078433
CVE References: CVE-2017-11166,CVE-2017-11170,CVE-2017-11448,CVE-2017-11450,CVE-2017-11528,CVE-2017-11530,CVE-2017-11531,CVE-2017-11533,CVE-2017-11537,CVE-2017-11638,CVE-2017-11642,CVE-2017-12418,CVE-2017-12427,CVE-2017-12429,CVE-2017-12432,CVE-2017-12566,CVE-2017-12654,CVE-2017-12663,CVE-2017-12664,CVE-2017-12665,CVE-2017-12668,CVE-2017-12674,CVE-2017-13058,CVE-2017-13131,CVE-2017-14060,CVE-2017-14139,CVE-2017-14224,CVE-2017-17682,CVE-2017-17885,CVE-2017-17934,CVE-2017-18028,CVE-2017-9405,CVE-2017-9407,CVE-2018-5357,CVE-2018-6405
Sources used:
SUSE Linux Enterprise Workstation Extension 12-SP3 (src):    ImageMagick-6.8.8.1-71.42.1
SUSE Linux Enterprise Workstation Extension 12-SP2 (src):    ImageMagick-6.8.8.1-71.42.1
SUSE Linux Enterprise Software Development Kit 12-SP3 (src):    ImageMagick-6.8.8.1-71.42.1
SUSE Linux Enterprise Software Development Kit 12-SP2 (src):    ImageMagick-6.8.8.1-71.42.1
SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 (src):    ImageMagick-6.8.8.1-71.42.1
SUSE Linux Enterprise Server 12-SP3 (src):    ImageMagick-6.8.8.1-71.42.1
SUSE Linux Enterprise Server 12-SP2 (src):    ImageMagick-6.8.8.1-71.42.1
SUSE Linux Enterprise Desktop 12-SP3 (src):    ImageMagick-6.8.8.1-71.42.1
SUSE Linux Enterprise Desktop 12-SP2 (src):    ImageMagick-6.8.8.1-71.42.1

Comment 9 Swamp Workflow Management 2018-03-06 23:16:49 UTC

openSUSE-SU-2018:0621-1: An update that fixes 35 vulnerabilities is now available.

Category: security (moderate)
Bug References: 1042824,1042911,1048110,1048272,1049374,1049375,1050048,1050119,1050122,1050126,1050132,1050617,1052207,1052248,1052251,1052254,1052472,1052688,1052711,1052747,1052750,1052754,1052761,1055069,1055229,1056768,1057163,1058009,1072898,1074119,1074170,1075821,1076182,1078433
CVE References: CVE-2017-11166,CVE-2017-11170,CVE-2017-11448,CVE-2017-11450,CVE-2017-11528,CVE-2017-11530,CVE-2017-11531,CVE-2017-11533,CVE-2017-11537,CVE-2017-11638,CVE-2017-11642,CVE-2017-12418,CVE-2017-12427,CVE-2017-12429,CVE-2017-12432,CVE-2017-12566,CVE-2017-12654,CVE-2017-12663,CVE-2017-12664,CVE-2017-12665,CVE-2017-12668,CVE-2017-12674,CVE-2017-13058,CVE-2017-13131,CVE-2017-14060,CVE-2017-14139,CVE-2017-14224,CVE-2017-17682,CVE-2017-17885,CVE-2017-17934,CVE-2017-18028,CVE-2017-9405,CVE-2017-9407,CVE-2018-5357,CVE-2018-6405
Sources used:
openSUSE Leap 42.3 (src):    ImageMagick-6.8.8.1-55.1

Comment 10 Marcus Meissner 2018-05-18 15:40:01 UTC

released