CVE-2017-14989

Posted on 2017년 10월 3일2017년 10월 3일 by admin

CVE-2017-14989

A use-after-free in RenderFreetype in MagickCore/annotate.c in ImageMagick 7.0.7-4 Q16 allows attackers to crash the application via a crafted font file, because the FT_Done_Glyph function (from FreeType 2) is called at an incorrect place in the ImageMagick code.

Source: CVE-2017-14989

답글 남기기 응답 취소