ImageMagick is vulnerable to denial of service (DoS) attacks. The ReadTXTImage
function doesn’t take into account the end-of-file condition when reading files which causes it to enter an infinite loop.
CPE | Name | Operator | Version |
---|---|---|---|
imagemagick | le | 6.8.8-9 |
bugs.debian.org/869210
github.com/ImageMagick/ImageMagick/commit/83e0f8ffd7eeb7661b0ff83257da23d24ca7f078
github.com/ImageMagick/ImageMagick/commit/a8f9c2aabed37cd6a728532d1aed13ae0f3dfd78
github.com/ImageMagick/ImageMagick/issues/591
lists.debian.org/debian-lts-announce/2019/05/msg00015.html
www.debian.org/security/2017/dsa-4019