Vulnerability CVE-2016-3716: Information
Description
The MSL coder in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allows remote attackers to move arbitrary files via a crafted image.
Severity: LOW (3.3) Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Fixed packages
Package name | Branch | Fixed in version | Version from repository | Errata ID | Task # | State |
---|---|---|---|---|---|---|
ImageMagick | sisyphus | 6.9.3.10-alt1 | 7.1.1.27-alt1 | ALT-PU-2016-1456-1 | 164369 | Fixed |
ImageMagick | p10 | 6.9.3.10-alt1 | 6.9.12.93-alt1 | ALT-PU-2016-1456-1 | 164369 | Fixed |
ImageMagick | p9 | 6.9.3.10-alt1 | 6.9.11.23-alt1 | ALT-PU-2016-1456-1 | 164369 | Fixed |
ImageMagick | p8 | 6.9.3.10-alt1 | 6.9.4.7-alt2.M80P.1 | ALT-PU-2016-1459-1 | 164370 | Fixed |
ImageMagick | c10f1 | 6.9.3.10-alt1 | 6.9.12.93-alt1 | ALT-PU-2016-1456-1 | 164369 | Fixed |
ImageMagick | c9f2 | 6.9.3.10-alt1 | 6.9.12.93-alt1 | ALT-PU-2016-1456-1 | 164369 | Fixed |
ImageMagick | c7 | 6.8.4.10-alt3.M70C.1 | 6.8.4.10-alt3.M70C.1 | ALT-PU-2016-1530-1 | 164972 | Fixed |