CVE-2017-11352

Source
Severity Low
Remote Yes
Type Denial of service
Description
In ImageMagick before 7.0.5-10, a crafted RLE image can trigger a crash because of incorrect EOF handling in coders/rle.c. This is caused by an incomplete fix of CVE-2017-9144.
Group Package Affected Fixed Severity Status Ticket
AVG-354 imagemagick 6.9.8.8-2 6.9.8.9-1 Low Fixed
References
http://seclists.org/oss-sec/2017/q3/172
https://github.com/ImageMagick/ImageMagick/issues/502
https://github.com/ImageMagick/ImageMagick/commit/86cb33143c5b21912187403860a7c26761a3cd23
https://github.com/ImageMagick/ImageMagick/commit/7f1f01b695e869c410ee10e2176f8fd764f09373