{"id":"CVE-2017-16546","details":"The ReadWPGImage function in coders/wpg.c in ImageMagick 7.0.7-9 does not properly validate the colormap index in a WPG palette, which allows remote attackers to cause a denial of service (use of uninitialized data or invalid memory allocation) or possibly have unspecified other impact via a malformed WPG file.","modified":"2026-04-16T06:19:10.140628667Z","published":"2017-11-05T22:29:00.230Z","related":["SUSE-SU-2017:3378-1","SUSE-SU-2017:3388-1","SUSE-SU-2017:3435-1"],"references":[{"type":"ADVISORY","url":"https://usn.ubuntu.com/3681-1/"},{"type":"ADVISORY","url":"https://www.debian.org/security/2017/dsa-4040"},{"type":"ADVISORY","url":"https://www.debian.org/security/2017/dsa-4074"},{"type":"REPORT","url":"https://github.com/ImageMagick/ImageMagick/commit/e04cf3e9524f50ca336253513d977224e083b816"},{"type":"FIX","url":"https://github.com/ImageMagick/ImageMagick/commit/2130bf6f89ded32ef0c88a11694f107c52566c53"},{"type":"FIX","url":"https://github.com/ImageMagick/ImageMagick/issues/851"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/imagemagick/imagemagick","events":[{"introduced":"0"},{"last_affected":"b964b20847be9015699bdb59b6431cf1101806ad"},{"fixed":"2130bf6f89ded32ef0c88a11694f107c52566c53"},{"fixed":"e04cf3e9524f50ca336253513d977224e083b816"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"7.0.7-9"}]}}],"versions":["7.0.1-0","7.0.1-1","7.0.1-10","7.0.1-2","7.0.1-3","7.0.1-4","7.0.1-5","7.0.1-6","7.0.1-7","7.0.1-8","7.0.1-9","7.0.2-0","7.0.2-1","7.0.2-10","7.0.2-2","7.0.2-3","7.0.2-4","7.0.2-5","7.0.2-6","7.0.2-7","7.0.2-8","7.0.2-9","7.0.3-0","7.0.3-1","7.0.3-10","7.0.3-2","7.0.3-3","7.0.3-4","7.0.3-5","7.0.3-6","7.0.3-7","7.0.3-8","7.0.3-9","7.0.4-0","7.0.4-1","7.0.4-10","7.0.4-2","7.0.4-3","7.0.4-4","7.0.4-5","7.0.4-6","7.0.4-7","7.0.4-8","7.0.4-9","7.0.5-0","7.0.5-1","7.0.5-10","7.0.5-2","7.0.5-3","7.0.5-4","7.0.5-5","7.0.5-6","7.0.5-7","7.0.5-8","7.0.5-9","7.0.6-0","7.0.6-1","7.0.6-2","7.0.6-3","7.0.6-4","7.0.6-5","7.0.6-6","7.0.6-7","7.0.6-8","7.0.6-9","7.0.7-0","7.0.7-1","7.0.7-2","7.0.7-3","7.0.7-4","7.0.7-5","7.0.7-6","7.0.7-8","7.0.7-9","7.0.7.7"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-16546.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"14.04"}]},{"events":[{"introduced":"0"},{"last_affected":"16.04"}]},{"events":[{"introduced":"0"},{"last_affected":"17.10"}]},{"events":[{"introduced":"0"},{"last_affected":"18.04"}]},{"events":[{"introduced":"0"},{"last_affected":"8.0"}]},{"events":[{"introduced":"0"},{"last_affected":"9.0"}]}],"vanir_signatures":[{"id":"CVE-2017-16546-1a59bbd4","signature_type":"Line","deprecated":false,"target":{"file":"coders/wpg.c"},"digest":{"threshold":0.9,"line_hashes":["239037879911661576146958638240697473991","6775137549662369651095735069313677055","230263286374246415018531447678239154621","167777559930016920714550450146410033513"]},"signature_version":"v1","source":"https://github.com/imagemagick/imagemagick/commit/2130bf6f89ded32ef0c88a11694f107c52566c53"},{"id":"CVE-2017-16546-71e01bf3","digest":{"function_hash":"120950539745086131144898489314772176044","length":12071},"deprecated":false,"target":{"function":"ReadWPGImage","file":"coders/wpg.c"},"source":"https://github.com/imagemagick/imagemagick/commit/e04cf3e9524f50ca336253513d977224e083b816","signature_version":"v1","signature_type":"Function"},{"id":"CVE-2017-16546-9dbc3eb1","digest":{"function_hash":"45674372341530071912301067453092590117","length":12161},"deprecated":false,"target":{"function":"ReadWPGImage","file":"coders/wpg.c"},"source":"https://github.com/imagemagick/imagemagick/commit/2130bf6f89ded32ef0c88a11694f107c52566c53","signature_version":"v1","signature_type":"Function"},{"id":"CVE-2017-16546-b18edb87","digest":{"threshold":0.9,"line_hashes":["6775137549662369651095735069313677055","230263286374246415018531447678239154621","265662654767131670731158258118047212943","328812252873929144357777357305708714005"]},"deprecated":false,"target":{"file":"coders/wpg.c"},"source":"https://github.com/imagemagick/imagemagick/commit/e04cf3e9524f50ca336253513d977224e083b816","signature_version":"v1","signature_type":"Line"}],"vanir_signatures_modified":"2026-04-11T04:37:58Z"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}