CVE-2018-16640

MEDIUM

ImageMagick 7.0.8-5 - Memory Corruption

Title source: llm

ImageMagick 7.0.8-5 has a memory leak vulnerability in the function ReadOneJNGImage in coders/png.c.

CVSS v3 6.5

EPSS 0.0020

EPSS Percentile 42.0%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE

CWE-772

Status published

Products (4)

canonical/ubuntu_linux 14.04

canonical/ubuntu_linux 16.04

canonical/ubuntu_linux 18.04

imagemagick/imagemagick 7.0.8-5

Published Sep 06, 2018

Tracked Since Feb 18, 2026