CVE-2016-10060

Published: Mar 2, 2017

Modified: Aug 6, 2024

PUBLISHED

Description

The ConcatenateImages function in MagickWand/magick-cli.c in ImageMagick before 7.0.1-10 does not check the return value of the fputc function, which allows remote attackers to cause a denial of service (application crash) via a crafted file.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://bugzilla.redhat.com/show_bug.cgi?id=1410470

x_refsource_CONFIRM

95208

vdb-entry

x_refsource_BID

https://github.com/ImageMagick/ImageMagick/commit/933e96f01a8c889c7bf5ffd30020e86a02a046e7

x_refsource_CONFIRM

https://github.com/ImageMagick/ImageMagick/issues/196

x_refsource_CONFIRM

[oss-security] 20161226 Re: CVE requests for various ImageMagick issues

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2016-10060

Description

Affected Products

References