Integer overflow in the GetEXIFProperty function in magick/property.c in ImageMagick prior to 6.7.6-4 allows remote malicious users to cause a denial of service (out-of-bounds read) via a large component count for certain EXIF tags in a JPEG image. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-0259.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
imagemagick imagemagick |
||
debian debian linux 6.0 |
||
canonical ubuntu linux 10.04 |
||
canonical ubuntu linux 11.04 |
||
canonical ubuntu linux 11.10 |
||
canonical ubuntu linux 12.04 |
||
opensuse opensuse 11.4 |
||
opensuse opensuse 12.1 |