| Severity |
|
| Remote |
|
| Type |
| - |
Unknown |
| + |
Insufficient validation |
|
| Description |
| + |
A security issue was found in ImageMagick before version 7.1.0-14 where it did not properly sanitize certain input before using it to invoke convert processes. This flaw allows an attacker to create a specially crafted image that leads to a use-after-free vulnerability when processed by ImageMagick. |
|
| References |
| + |
https://bugzilla.redhat.com/show_bug.cgi?id=2023196 |
| + |
https://github.com/ImageMagick/ImageMagick/issues/4446 |
| + |
https://github.com/ImageMagick/ImageMagick/commit/82775af03bbb10a0a1d0e15c0156c75673b4525e |
|
| Notes |
|