CVE-2018-16644

Published: Sep 6, 2018

Modified: Aug 5, 2024

PUBLISHED

Description

There is a missing check for length in the functions ReadDCMImage of coders/dcm.c and ReadPICTImage of coders/pict.c in ImageMagick 7.0.8-11, which allows remote attackers to cause a denial of service via a crafted image.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/ImageMagick/ImageMagick/commit/16916c8979c32765c542e216b31cee2671b7afe7

x_refsource_MISC

[debian-lts-announce] 20181003 [SECURITY] [DLA 1530-1] imagemagick security update

mailing-list

x_refsource_MLIST

https://github.com/ImageMagick/ImageMagick/commit/afa878a689870c28b6994ecf3bb8dbfb2b76d135

x_refsource_MISC

DSA-4316

vendor-advisory

x_refsource_DEBIAN

USN-3785-1

vendor-advisory

x_refsource_UBUNTU

https://github.com/ImageMagick/ImageMagick/issues/1269

x_refsource_MISC

openSUSE-SU-2019:1320

vendor-advisory

x_refsource_SUSE

USN-4034-1

vendor-advisory

x_refsource_UBUNTU

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2018-16644

Description

Affected Products

References