DEBIAN-CVE-2018-20189

In GraphicsMagick 1.3.31, the ReadDIBImage function of coders/dib.c has a vulnerability allowing a crash and denial of service via a dib file that is crafted to appear with direct pixel values and also colormapping which is not available beyond 8-bits/sample, and therefore lacks indexes...

PT-2018-3481 · Graphicsmagick +3 · Graphicsmagick +3

Name of the Vulnerable Software and Affected Versions: GraphicsMagick version 1.3.31 Description: The issue is related to the ReadDIBImage function in GraphicsMagick, which lacks proper input validation. This can be exploited by a remote attacker using a specially crafted dib file, potentially...