ImageMagick is vulnerable to denial of service (DoS) attacks through null pointer dereferences. The AcquireResampleFilterThreadSet
method in magick/resample-private.h
does not properly handle memory allocation, causing a null pointer dereference that can lead to memory exhaustion.
CPE | Name | Operator | Version |
---|---|---|---|
imagemagick | le | 6.8.8-9 | |
imagemagick:stretch | eq | 8:6.9.7.4+dfsg-11+deb9u8 |