FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

GraphicsMagick -- SVG/Rendering vulnerability

Affected packages
GraphicsMagick < 1.3.30,1

Details

VuXML ID e714b7d2-39f6-4992-9f48-e6b2f5f949df
Discovery 2018-06-23
Entry 2018-08-11

GraphicsMagick News:

Fix heap write overflow of PrimitiveInfo and PointInfo arrays. This is another manefestation of CVE-2016-2317, which should finally be fixed correctly due to active detection/correction of pending overflow rather than using estimation.

References

CVE Name CVE-2016-2317
URL http://www.graphicsmagick.org/NEWS.html