The vulnerability of the ComplexImages function in the MagickCore/fourier.c component of the console-based image editing tool ImageMagick, which involves reading data beyond the permissible buffer size, allows an attacker to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the ComplexImages function in the MagickCore/fourier.c component of the console-based image editing tool ImageMagick involves reading data beyond the allowable buffer size. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its...

PT-2019-2864 · Imagemagick +1 · Imagemagick +1

Name of the Vulnerable Software and Affected Versions: ImageMagick version 7.0.8-50 Q16 Description: The issue is related to a heap-based buffer over-read in the ComplexImages function, located in MagickCore/fourier.c. This can be exploited by a remote attacker using a specially crafted image,...