NVD - CVE-2017-5508

Vulnerability Change Records for CVE-2017-5508

Change History

Initial Analysis by NIST 3/27/2017 3:17:14 PM

Action	Type	Old Value	New Value
Added	CPE Configuration		OR cpe:2.3:a:imagemagick:imagemagick:6.9.7-2::::::: (and previous)
Added	CPE Configuration		OR cpe:2.3:a:imagemagick:imagemagick:7.0.1-0::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.1-1::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.1-10::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.1-2::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.1-3::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.1-4::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.1-5::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.1-6::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.1-7::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.1-8::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.1-9::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.2-0::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.2-1::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.2-10::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.2-2::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.2-3::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.2-4::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.2-5::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.2-6::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.2-7::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.2-8::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.2-9::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.3-0::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.3-1::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.3-10::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.3-2::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.3-3::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.3-4::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.3-5::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.3-6::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.3-7::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.3-8::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.3-9::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.4-0::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.4-1::::::: cpe:2.3:a:imagemagick:imagemagick:7.0.4-2:::::::
Added	CVSS V2		(AV:N/AC:M/Au:N/C:N/I:N/A:P)
Added	CVSS V3		AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Added	CWE		CWE-119
Changed	Reference Type	http://www.openwall.com/lists/oss-security/2017/01/16/6 No Types Assigned	http://www.openwall.com/lists/oss-security/2017/01/16/6 Mailing List, Patch, Third Party Advisory
Changed	Reference Type	http://www.openwall.com/lists/oss-security/2017/01/17/5 No Types Assigned	http://www.openwall.com/lists/oss-security/2017/01/17/5 Mailing List, Patch, Third Party Advisory
Changed	Reference Type	http://www.securityfocus.com/bid/95748 No Types Assigned	http://www.securityfocus.com/bid/95748 Third Party Advisory, VDB Entry
Changed	Reference Type	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=851381 No Types Assigned	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=851381 Issue Tracking, Patch, Third Party Advisory
Changed	Reference Type	https://github.com/ImageMagick/ImageMagick/blob/6.9.7-3/ChangeLog No Types Assigned	https://github.com/ImageMagick/ImageMagick/blob/6.9.7-3/ChangeLog Release Notes
Changed	Reference Type	https://github.com/ImageMagick/ImageMagick/blob/7.0.4-3/ChangeLog No Types Assigned	https://github.com/ImageMagick/ImageMagick/blob/7.0.4-3/ChangeLog Release Notes, Third Party Advisory
Changed	Reference Type	https://github.com/ImageMagick/ImageMagick/commit/c073a7712d82476b5fbee74856c46b88af9c3175 No Types Assigned	https://github.com/ImageMagick/ImageMagick/commit/c073a7712d82476b5fbee74856c46b88af9c3175 Issue Tracking, Patch, Third Party Advisory
Changed	Reference Type	https://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=31161 No Types Assigned	https://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=31161 Issue Tracking, Vendor Advisory