In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer over-read in the function ReadMIFFImage of coders/miff.c, which allows malicious users to cause a denial of service or information disclosure via an RLE packet.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
graphicsmagick graphicsmagick |
||
opensuse leap 42.3 |
||
opensuse leap 15.0 |
||
debian debian linux 8.0 |