Denial Of Service (DoS)

2017-04-2106:20:37

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

EPSS

0.005

Percentile

76.8%

JSON

ImageMagick is vulnerable to denial of service (DoS) attacks. A malicious user can pass a PICT file to the EncodeImage function in coders/pict.c to cause an out-of-bounds read and cause the system to crash.

References

bugs.launchpad.net/ubuntu/+source/imagemagick/+bug/1533449

bugzilla.redhat.com/show_bug.cgi?id=1378744

github.com/ImageMagick/ImageMagick/commit/6e4b009f392b8f9d2dbfb4f8524143a10c3ce574

github.com/ImageMagick/ImageMagick/issues/80

EPSS

0.005

Percentile

76.8%

JSON

Related for VERACODE:3943