Vulnerabilities

CVE-2017-14989

by Fred · 02/10/2017

A use-after-free in RenderFreetype in MagickCore/annotate.c in ImageMagick 7.0.7-4 Q16 allows attackers to crash the application via a crafted font file, because the FT_Done_Glyph function (from FreeType 2) is called at an incorrect place in the ImageMagick code.

Date published : 2017-10-02

https://github.com/ImageMagick/ImageMagick/issues/781

https://www.debian.org/security/2017/dsa-4032

Similar

Tags: Cybersecurity Alert