Integer overflow in the SyncImageProfiles function in profile.c in ImageMagick 6.7.5-8 and previous versions allows remote malicious users to cause a denial of service (infinite loop) via crafted IOP tag offsets in the IFD in an image. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-0248.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
imagemagick imagemagick |
||
debian debian linux 6.0 |
||
canonical ubuntu linux 11.04 |
||
canonical ubuntu linux 11.10 |
||
canonical ubuntu linux 12.04 |
||
canonical ubuntu linux 10.04 |
||
opensuse opensuse 11.4 |
||
opensuse opensuse 12.1 |