漏洞类别:Ubuntu
漏洞等级: 
漏洞信息
It was discovered that ImageMagick incorrectly handled certain malformed image files.
漏洞危害
If a user or automated system using ImageMagick were tricked into opening a specially crafted image, an attacker could exploit this to cause a denial of service or possibly execute code with the privileges of the user invoking the program.
解决方案
Refer to Ubuntu advisory USN-3363-1 for affected packages and patching details, or update with your package manager.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
USN-3363-1: 17.04 (zesty) on src (libmagick++-6.q16-7)
USN-3363-1: 16.04 (Xenial) on src (imagemagick-6.q16)
USN-3363-1: 16.04 (Xenial) on src (imagemagick)
USN-3363-1: 14.04 (Kylin) on src (libmagickcore5)
USN-3363-1: 16.04 (Xenial) on src (libmagick++-6.q16-5v5)
USN-3363-1: 17.04 (zesty) on src (imagemagick-6.q16)
USN-3363-1: 17.04 (zesty) on src (imagemagick)
USN-3363-1: 14.04 (Kylin) on src (imagemagick)
USN-3363-1: 16.04 (Xenial) on src (libmagickcore-6.q16-2)
0daybank
文章评论