CVE-2017-9144
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2017-9144
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-9144.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2017-9144
- Downstream
- Related
- Published
- 2017-05-22T14:29:00Z
- Modified
- 2025-10-10T01:12:03.794800Z
- Severity
-
- 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
In ImageMagick 7.0.5-5, a crafted RLE image can trigger a crash because of incorrect EOF handling in coders/rle.c.
- References
Affected packages
Git / github.com/imagemagick/imagemagick
Affected ranges
- Type
- GIT
- Repo
- https://github.com/imagemagick/imagemagick
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
7.*
7.0.1-0
7.0.1-1
7.0.1-10
7.0.1-2
7.0.1-3
7.0.1-4
7.0.1-5
7.0.1-6
7.0.1-7
7.0.1-8
7.0.1-9
7.0.2-0
7.0.2-1
7.0.2-10
7.0.2-2
7.0.2-3
7.0.2-4
7.0.2-5
7.0.2-6
7.0.2-7
7.0.2-8
7.0.2-9
7.0.3-0
7.0.3-1
7.0.3-10
7.0.3-2
7.0.3-3
7.0.3-4
7.0.3-5
7.0.3-6
7.0.3-7
7.0.3-8
7.0.3-9
7.0.4-0
7.0.4-1
7.0.4-10
7.0.4-2
7.0.4-3
7.0.4-4
7.0.4-5
7.0.4-6
7.0.4-7
7.0.4-8
7.0.4-9
7.0.5-0
7.0.5-1
7.0.5-2
7.0.5-3
7.0.5-4
7.0.5-5
Database specific
{
"vanir_signatures": [
{
"id": "CVE-2017-9144-72250fe7",
"digest": {
"line_hashes": [
"245313225001170332104170156635750749946",
"2715447564499511875398110413324807474",
"57715714534827879251535601085509081252",
"258651753632070878870841798926878846494",
"333544368184070053010906853747200450064",
"333276916013171088666643621903582157888",
"259910642101951857374455098010540235911",
"167022139893941037330581873263885542766",
"270322728588086259614614528575154018692",
"231981191946529199820117434416124563197",
"248881734972614941836028296952086717580",
"175300867465846461648275802293275660855",
"136545751570837995857938499844411410433",
"65838235248001948846626787767146108258",
"318637194682597330509215309820265141495",
"131879198355232054250029038376047920517",
"310448143261891848854757088995615722739",
"190946206961819545839351839199833023037",
"261263467045881034837146025141308199337",
"131971478152723688535838292203223400627",
"306050479175140642205616603392697598287",
"156724708982705357564663792797641458440",
"23380692874001204338750631602925000199",
"302011346689985164745294783398903896674",
"182658376792404770610512116055523383270",
"170332867245944674876172964798665841097",
"6362944173681929492983785245422070399",
"56361959335563747699000113482247887892",
"6712839645474271494620898380701109240",
"252313576587341317415441139005018819879",
"117056892178513044662407328892416459813",
"42298114491589519464969453743543044172",
"190946206961819545839351839199833023037",
"261263467045881034837146025141308199337",
"131971478152723688535838292203223400627",
"288266548473625984802000636820098271935",
"199926029188741517236595749813081081376",
"30947904900441035358072037530787739733",
"261345797608526014971565190975756046682",
"292322576661720492163207582516882911161",
"205461958908692913770389882202625139458",
"36107433435778734065472403573924899802",
"290840983470177328106733070169039928991",
"199587900100131371357247305526784481566",
"176714729570876141443894410335792100729",
"262434926091091411491294168695217323355",
"196547376700279808253727986066349348151",
"190762798833776860154277894613206995951",
"23094059844303982080683788405997072034",
"336955392005557691685915128825903395024",
"29490542718911143732106549170825389322",
"172492230760187119529083292563230179169",
"119701206724909456615168682845081304355",
"278525732516949296663919065239605514128",
"176714729570876141443894410335792100729",
"197703781973381643261472613245762402362",
"134688536800727138186017553237502495599",
"292626630507648736882352354212788453748",
"265773511348559316553987868129431141206",
"317806991865429325097333683720368076972",
"193289428897953860896730605078943844361",
"151436312336781718862515344028615067090",
"176714729570876141443894410335792100729",
"241070892852157862468970065725552328927",
"242346636559513463005132324218302935149",
"220359834407145728483318062160484588111",
"191442826948943868227088804551874306582",
"229440692837201811356569440962534222971",
"129276675754450598609281947807418069963",
"290360771464454773217968806417869951038",
"324718990127423714623304184531404592357",
"140738219054650612594458137441704828297",
"303398727533686742983308195573841507648",
"176714729570876141443894410335792100729",
"211464101302679361212520831825504025204",
"109212738222713678375525154519239187735",
"206763388730426287709883786074153260777",
"154749866978352168385819459257825762347",
"258549396968445072106436885992383446478",
"191442826948943868227088804551874306582",
"229440692837201811356569440962534222971",
"129276675754450598609281947807418069963",
"290360771464454773217968806417869951038",
"324718990127423714623304184531404592357",
"217678671937524877736750047396578228149",
"176706061980215219933802243025734711702",
"52861588544669234819935200000437592262",
"131914528749446702243173096567232988354",
"320320710547404002564762508217618832260",
"19032714601718500612938108421311534969",
"171387545159509940624120258497284546552",
"91788949689948432472441628313511155232",
"174378775369449536673742447081181388488",
"320633118101193337825346796828769696031",
"245230827653999654332237370217900110573",
"180305107698906380886972162568873170986",
"44178850642753478982557465829335764343",
"26272647191538042580996279320987857376",
"77715664280999955566595629393969710297",
"42507487132472233772251890779201757874"
],
"threshold": 0.9
},
"target": {
"file": "coders/rle.c"
},
"signature_version": "v1",
"source": "https://github.com/imagemagick/imagemagick/commit/f6240ee77847787f6d7618b669d3a2040a2d6d40",
"deprecated": false,
"signature_type": "Line"
},
{
"id": "CVE-2017-9144-d973c7ea",
"digest": {
"length": 11062.0,
"function_hash": "41210600969995582835514364617456564587"
},
"target": {
"function": "ReadRLEImage",
"file": "coders/rle.c"
},
"signature_version": "v1",
"source": "https://github.com/imagemagick/imagemagick/commit/f6240ee77847787f6d7618b669d3a2040a2d6d40",
"deprecated": false,
"signature_type": "Function"
}
]
}