Vulnerability Change Records for CVE-2016-3716

Change History

CVE Modified by Red Hat, Inc. 6/30/2017 9:29:44 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://security.gentoo.org/glsa/201611-21 [No Types Assigned]

CVE Modified by Red Hat, Inc. 10/09/2018 4:0:02 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.securityfocus.com/archive/1/538378/100/0/threaded [No Types Assigned]
Removed Reference
http://www.securityfocus.com/archive/1/archive/1/538378/100/0/threaded [No Types Assigned]

								
						

CVE Modified by Red Hat, Inc. 11/30/2016 10:10:09 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00024.html [No Types Assigned]
Added Reference

								
							
							
						
http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00025.html [No Types Assigned]
Added Reference

								
							
							
						
http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00028.html [No Types Assigned]
Added Reference

								
							
							
						
http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00032.html [No Types Assigned]
Added Reference

								
							
							
						
http://www.debian.org/security/2016/dsa-3580 [No Types Assigned]
Added Reference

								
							
							
						
http://www.securityfocus.com/archive/1/archive/1/538378/100/0/threaded [No Types Assigned]
Added Reference

								
							
							
						
http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.440568 [No Types Assigned]

Modified Analysis 8/19/2016 3:47:51 PM

Action Type Old Value New Value
Changed CPE Configuration
Configuration 1
     OR
          *cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
          *cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*
          *cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
          *cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
Configuration 2
     OR
          *cpe:2.3:a:imagemagick:imagemagick:7.0.1-0:*:*:*:*:*:*:*
          *cpe:2.3:a:imagemagick:imagemagick:7.0.0-0:*:*:*:*:*:*:*
          *cpe:2.3:a:imagemagick:imagemagick:6.9.3-9:*:*:*:*:*:*:* (and previous)
Configuration 1
     OR
          *cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
          *cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*
          *cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
          *cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
Configuration 2
     OR
          *cpe:2.3:a:imagemagick:imagemagick:7.0.1-0:*:*:*:*:*:*:*
          *cpe:2.3:a:imagemagick:imagemagick:7.0.0-0:*:*:*:*:*:*:*
          *cpe:2.3:a:imagemagick:imagemagick:6.9.3-9:*:*:*:*:*:*:* (and previous)
Configuration 3
     OR
          *cpe:2.3:o:redhat:enterprise_linux_server_eus:7.2:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_hpc_node_eus:7.2:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_server_supplementary_eus:6.7z:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_hpc_node:6.0:*:*:*:*:*:*:*
Changed Reference Type
http://rhn.redhat.com/errata/RHSA-2016-0726.html No Types Assigned
http://rhn.redhat.com/errata/RHSA-2016-0726.html Third Party Advisory
Changed Reference Type
http://www.ubuntu.com/usn/USN-2990-1 No Types Assigned
http://www.ubuntu.com/usn/USN-2990-1 Third Party Advisory

Initial CVE Analysis 5/06/2016 2:42:16 PM

Action Type Old Value New Value

CVE Modified by Source 7/13/2016 10:0:57 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://rhn.redhat.com/errata/RHSA-2016-0726.html

Modified Analysis 5/09/2016 3:26:28 PM

Action Type Old Value New Value
Added CPE Configuration

								
							
							
						
Configuration 1
     OR
          *cpe:2.3:a:imagemagick:imagemagick:7.0.1-0:*:*:*:*:*:*:*
          *cpe:2.3:a:imagemagick:imagemagick:7.0.0-0:*:*:*:*:*:*:*
          *cpe:2.3:a:imagemagick:imagemagick:6.9.3-9:*:*:*:*:*:*:* (and previous)
Added CVSS V2

								
							
							
						
(AV:N/AC:M/Au:N/C:N/I:P/A:N)
Added CVSS V3

								
							
							
						
AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Added CWE

								
							
							
						
CWE-264
Changed Reference Type
http://git.imagemagick.org/repos/ImageMagick/blob/a01518e08c840577cabd7d3ff291a9ba735f7276/ChangeLog No Types Assigned
http://git.imagemagick.org/repos/ImageMagick/blob/a01518e08c840577cabd7d3ff291a9ba735f7276/ChangeLog Advisory, Patch
Changed Reference Type
http://www.openwall.com/lists/oss-security/2016/05/03/18 No Types Assigned
http://www.openwall.com/lists/oss-security/2016/05/03/18 Exploit
Changed Reference Type
https://www.imagemagick.org/discourse-server/viewtopic.php?f=4&t=29588 No Types Assigned
https://www.imagemagick.org/discourse-server/viewtopic.php?f=4&t=29588 Advisory
Changed Reference Type
https://www.imagemagick.org/script/changelog.php No Types Assigned
https://www.imagemagick.org/script/changelog.php Advisory

CVE Modified by Source 10/03/2016 10:8:11 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html

CVE Modified by Source 6/20/2016 9:59:39 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.ubuntu.com/usn/USN-2990-1

CVE Modified by Source 9/22/2016 9:59:57 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html

CVE Modified by Red Hat, Inc. 6/28/2018 9:29:00 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.debian.org/debian-lts-announce/2018/06/msg00009.html [No Types Assigned]

CVE Modified by Red Hat, Inc. 9/06/2017 9:29:03 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www.exploit-db.com/exploits/39767/ [No Types Assigned]