imagemagick is vulnerable to denial of service (DoS). The vulnerability exists through ReadBMPImage
and WriteBMPImage
in coders/bmp.c
.
access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.8_release_notes/index
access.redhat.com/errata/RHSA-2020:1180
access.redhat.com/security/updates/classification/#moderate
bugzilla.redhat.com/show_bug.cgi?id=1743658
bugzilla.redhat.com/show_bug.cgi?id=1764595
bugzilla.redhat.com/show_bug.cgi?id=1765205
bugzilla.redhat.com/show_bug.cgi?id=1765208
bugzilla.redhat.com/show_bug.cgi?id=1765211
github.com/ImageMagick/ImageMagick/issues/1177
lists.debian.org/debian-lts-announce/2018/06/msg00004.html
usn.ubuntu.com/3711-1/
www.debian.org/security/2018/dsa-4245