CVE-2017-12876
- Source
- https://cve.org/CVERecord?id=CVE-2017-12876
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2017-12876.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2017-12876
- Published
- 2017-08-28T19:29:00.747Z
- Modified
- 2026-05-30T08:06:55.472028Z
- Severity
-
- 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
Heap-based buffer overflow in enhance.c in ImageMagick before 7.0.6-6 allows remote attackers to cause a denial of service via a crafted file.
- References
Affected packages
Git / github.com/imagemagick/imagemagick
Affected ranges
- Type
- GIT
- Repo
- https://github.com/imagemagick/imagemagick
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixedFixed
- Database specific
{ "cpe": "cpe:2.3:a:imagemagick:imagemagick:*:*:*:*:*:*:*:*", "extracted_events": [ { "introduced": "7.0.0-0" }, { "fixed": "7.0.6-6" } ], "source": [ "CPE_RANGE", "REFERENCES" ] }
Affected versions
7.*
7.0.1-0
7.0.1-1
7.0.1-10
7.0.1-2
7.0.1-3
7.0.1-4
7.0.1-5
7.0.1-6
7.0.1-7
7.0.1-8
7.0.1-9
7.0.2-0
7.0.2-1
7.0.2-10
7.0.2-2
7.0.2-3
7.0.2-4
7.0.2-5
7.0.2-6
7.0.2-7
7.0.2-8
7.0.2-9
7.0.3-0
7.0.3-1
7.0.3-10
7.0.3-2
7.0.3-3
7.0.3-4
7.0.3-5
7.0.3-6
7.0.3-7
7.0.3-8
7.0.3-9
7.0.4-0
7.0.4-1
7.0.4-10
7.0.4-2
7.0.4-3
7.0.4-4
7.0.4-5
7.0.4-6
7.0.4-7
7.0.4-8
7.0.4-9
7.0.5-0
7.0.5-1
7.0.5-10
7.0.5-2
7.0.5-3
7.0.5-4
7.0.5-5
7.0.5-6
7.0.5-7
7.0.5-8
7.0.5-9
7.0.6-0
7.0.6-1
7.0.6-2
7.0.6-3
7.0.6-4
7.0.6-5
Database specific
vanir_signatures_modified
"2026-05-30T08:06:55Z"
vanir_signatures
[
{
"source": "https://github.com/imagemagick/imagemagick/commit/1cc6f0ccc92c20c7cab6c4a7335daf29c91f0d8e",
"digest": {
"threshold": 0.9,
"line_hashes": [
"159720653019756489098112919839395199621",
"1493601648042703426643190035589463863",
"225902270912491237414267861518603486020",
"323469041891454117735811538174404017971",
"237939550130167628625439668004044370318",
"55746174173618589623335783024052090295",
"126857360410016675314037605434420344596",
"75025569001867592473806576716471535181",
"289350014631510141006145386212732985509",
"263222327518072518305032413649559112507",
"278341161242473877393040767004883379143",
"255046626632397323301962381349947439945"
]
},
"deprecated": false,
"id": "CVE-2017-12876-8ac8223f",
"signature_version": "v1",
"target": {
"file": "MagickCore/enhance.c"
},
"signature_type": "Line"
},
{
"source": "https://github.com/imagemagick/imagemagick/commit/1cc6f0ccc92c20c7cab6c4a7335daf29c91f0d8e",
"digest": {
"length": 5982.0,
"function_hash": "138131495163229802714153764407181988231"
},
"deprecated": false,
"id": "CVE-2017-12876-ab8d9efb",
"signature_version": "v1",
"target": {
"function": "ContrastStretchImage",
"file": "MagickCore/enhance.c"
},
"signature_type": "Function"
},
{
"source": "https://github.com/imagemagick/imagemagick/commit/1cc6f0ccc92c20c7cab6c4a7335daf29c91f0d8e",
"digest": {
"length": 5638.0,
"function_hash": "308998591133831409350954514066461080081"
},
"deprecated": false,
"id": "CVE-2017-12876-e18caded",
"signature_version": "v1",
"target": {
"function": "EqualizeImage",
"file": "MagickCore/enhance.c"
},
"signature_type": "Function"
}
]
source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2017-12876.json"