In ImageMagick 7.0.8-13 Q16, there is a heap-based buffer over-read in the EncodeImage function of coders/pict.c, which allows attackers to cause a denial of service via a crafted SVG image file.
CPE | Name | Operator | Version |
---|---|---|---|
debian_linux | eq | 8.0 | |
imagemagick | eq | 7.0.8-13 q16 |