In ImageMagick 7.0.5-7 Q16, a crafted file could trigger an assertion failure in the ResetImageProfileIterator function in MagickCore/profile.c because of missing checks in the ReadDDSImage function in coders/dds.c.
References
Link | Resource |
---|---|
https://github.com/ImageMagick/ImageMagick/issues/489 | Issue Tracking Patch Third Party Advisory |
http://www.securityfocus.com/bid/98606 | Third Party Advisory VDB Entry |
http://www.debian.org/security/2017/dsa-3863 | Third Party Advisory |
https://github.com/ImageMagick/ImageMagick/commit/0c5b1e430a83ef793a7334bbbee408cf3c628699 | Patch Vendor Advisory |
Information
Published : 2017-05-22 07:29
Updated : 2020-10-15 09:09
NVD link : CVE-2017-9141
Mitre link : CVE-2017-9141
JSON object : View
Products Affected
debian
- debian_linux
imagemagick
- imagemagick