CVE-2017-12641
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2017-12641
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-12641.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2017-12641
- Downstream
- Related
- Published
- 2017-08-07T15:29:00Z
- Modified
- 2025-10-14T16:03:18.438511Z
- Severity
-
- 8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadOneJNGImage in coders\png.c.
- References
Affected packages
Git / github.com/imagemagick/imagemagick
Affected ranges
- Type
- GIT
- Repo
- https://github.com/imagemagick/imagemagick
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
7.*
7.0.1-0
7.0.1-1
7.0.1-10
7.0.1-2
7.0.1-3
7.0.1-4
7.0.1-5
7.0.1-6
7.0.1-7
7.0.1-8
7.0.1-9
7.0.2-0
7.0.2-1
7.0.2-10
7.0.2-2
7.0.2-3
7.0.2-4
7.0.2-5
7.0.2-6
7.0.2-7
7.0.2-8
7.0.2-9
7.0.3-0
7.0.3-1
7.0.3-10
7.0.3-2
7.0.3-3
7.0.3-4
7.0.3-5
7.0.3-6
7.0.3-7
7.0.3-8
7.0.3-9
7.0.4-0
7.0.4-1
7.0.4-10
7.0.4-2
7.0.4-3
7.0.4-4
7.0.4-5
7.0.4-6
7.0.4-7
7.0.4-8
7.0.4-9
7.0.5-0
7.0.5-1
7.0.5-10
7.0.5-2
7.0.5-3
7.0.5-4
7.0.5-5
7.0.5-6
7.0.5-7
7.0.5-8
7.0.5-9
7.0.6-0
Database specific
{
"vanir_signatures": [
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"31323350978311067925766315366485684924",
"210037594988798164302725900098723621419",
"60597511979470144454877663557314686413",
"107905194849328865988057212865690714192"
]
},
"target": {
"file": "coders/png.c"
},
"deprecated": false,
"source": "https://github.com/imagemagick/imagemagick/commit/c9aa9f80828594eacbe3affe16c43d623562e5d8",
"signature_version": "v1",
"id": "CVE-2017-12641-1d9d4cd5",
"signature_type": "Line"
},
{
"digest": {
"length": 14116.0,
"function_hash": "140130671570827421069476320998311197543"
},
"target": {
"file": "coders/png.c",
"function": "ReadOneJNGImage"
},
"deprecated": false,
"source": "https://github.com/imagemagick/imagemagick/commit/c9aa9f80828594eacbe3affe16c43d623562e5d8",
"signature_version": "v1",
"id": "CVE-2017-12641-951f9bb8",
"signature_type": "Function"
}
]
}