CVE-2016-10061

Published: Mar 3, 2017

Modified: Aug 6, 2024

PUBLISHED

Description

The ReadGROUP4Image function in coders/tiff.c in ImageMagick before 7.0.1-10 does not check the return value of the fputc function, which allows remote attackers to cause a denial of service (crash) via a crafted image file.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/ImageMagick/ImageMagick/commit/4e914bbe371433f0590cefdf3bd5f3a5710069f9

x_refsource_CONFIRM

https://github.com/ImageMagick/ImageMagick/issues/196

x_refsource_CONFIRM

95207

vdb-entry

x_refsource_BID

https://bugzilla.redhat.com/show_bug.cgi?id=1410471

x_refsource_CONFIRM

[oss-security] 20161226 Re: CVE requests for various ImageMagick issues

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2016-10061

Description

Affected Products

References