EPSS
Percentile
76.8%
ImageMagick is vulnerable to a denial of service (DoS) attacks. A malicious user can pass a VIFF file to the ReadVIFFImage function in coders/viff.c to cause an out-of-bounds read and crash the system.
VIFF
ReadVIFFImage
coders/viff.c
bugs.launchpad.net/ubuntu/+source/imagemagick/+bug/1533452
bugzilla.redhat.com/show_bug.cgi?id=1378743
github.com/ImageMagick/ImageMagick/commit/6e4b009f392b8f9d2dbfb4f8524143a10c3ce574
github.com/ImageMagick/ImageMagick/issues/77