CVE-2016-7520

Heap-based buffer overflow in coders/hdr.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted HDR file.

References

Affected packages

Git / github.com/imagemagick/imagemagick

Affected ranges

Type: GIT
Repo: https://github.com/imagemagick/imagemagick
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

14e606db148d6ebcaae20f1e1d6d71903ca4a556

Database specific

vanir_signatures

[
    {
        "signature_type": "Line",
        "id": "CVE-2016-7520-9fc7a166",
        "source": "https://github.com/imagemagick/imagemagick/commit/14e606db148d6ebcaae20f1e1d6d71903ca4a556",
        "signature_version": "v1",
        "target": {
            "file": "coders/hdr.c"
        },
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "261613896413040236202728902801090629737",
                "910447047944893757553674354114831407",
                "209129301325924218894889965815119603213",
                "175077565918725114436041454196775222743",
                "176637435052841913276605164796219644003",
                "208025609213307800022292998157650736121",
                "274277301695813900790937200843926142684",
                "321071345149128667616407158871456610962",
                "311274049531778033145933701126830577393",
                "70253998843513032037944280532823061077",
                "163980523602352263592525460105768086099"
            ]
        },
        "deprecated": false
    },
    {
        "signature_type": "Function",
        "id": "CVE-2016-7520-fdec17b1",
        "source": "https://github.com/imagemagick/imagemagick/commit/14e606db148d6ebcaae20f1e1d6d71903ca4a556",
        "signature_version": "v1",
        "target": {
            "function": "WriteHDRImage",
            "file": "coders/hdr.c"
        },
        "digest": {
            "function_hash": "294111022627234427408949519455393145826",
            "length": 5072.0
        },
        "deprecated": false
    }
]

Git / github.com/imagemagick/imagemagick

Affected ranges

Type: GIT
Repo: https://github.com/imagemagick/imagemagick6
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

4bae9bed8a79e031884ca9a4681dce89dbd26855