CVE-2016-7530
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2016-7530
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-7530.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2016-7530
- Downstream
- Related
- Published
- 2017-04-20T18:59:01Z
- Modified
- 2025-11-10T05:33:13Z
- Severity
-
- 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
The quantum handling code in ImageMagick allows remote attackers to cause a denial of service (divide-by-zero error or out-of-bounds write) via a crafted file.
- References
-
- http://www.openwall.com/lists/oss-security/2016/09/22/2
- http://www.securityfocus.com/bid/93131
- https://bugs.launchpad.net/bugs/1539053
- https://bugs.launchpad.net/bugs/1539067
- https://bugzilla.redhat.com/show_bug.cgi?id=1378762
- https://github.com/ImageMagick/ImageMagick/issues/105
- https://github.com/ImageMagick/ImageMagick/issues/110
- https://github.com/ImageMagick/ImageMagick/commit/63346f34f9d19179599b5b256e5e8d3dda46435c
- https://github.com/ImageMagick/ImageMagick/commit/b5ed738f8060266bf4ae521f7e3ed145aa4498a3
- https://github.com/ImageMagick/ImageMagick/commit/c4e63ad30bc42da691f2b5f82a24516dd6b4dc70
Affected packages
Git / github.com/imagemagick/imagemagick
Affected ranges
- Type
- GIT
- Repo
- https://github.com/imagemagick/imagemagick
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixedFixedFixed
Database specific
vanir_signatures
[
{
"id": "CVE-2016-7530-0922cb9a",
"digest": {
"line_hashes": [
"119004841677264278704629505408064653358",
"113716437866341380968339424275026577676",
"213788046492512370864356220996882122709",
"36318200836616489339805252907813319471"
],
"threshold": 0.9
},
"source": "https://github.com/imagemagick/imagemagick/commit/b5ed738f8060266bf4ae521f7e3ed145aa4498a3",
"target": {
"file": "magick/quantum.c"
},
"deprecated": false,
"signature_type": "Line",
"signature_version": "v1"
},
{
"id": "CVE-2016-7530-4c5a9aa1",
"digest": {
"line_hashes": [
"308230813187503628149805877233850882378",
"122744621927629324998830851397821250012",
"141292732701133872893456974972184274140",
"25447551733151959752730163145992302021"
],
"threshold": 0.9
},
"source": "https://github.com/imagemagick/imagemagick/commit/63346f34f9d19179599b5b256e5e8d3dda46435c",
"target": {
"file": "Magick++/tests/appendImages.cpp"
},
"deprecated": false,
"signature_type": "Line",
"signature_version": "v1"
},
{
"id": "CVE-2016-7530-77b06e9c",
"digest": {
"length": 784.0,
"function_hash": "119968278571635995698264616439755444266"
},
"source": "https://github.com/imagemagick/imagemagick/commit/c4e63ad30bc42da691f2b5f82a24516dd6b4dc70",
"target": {
"file": "MagickCore/quantum.c",
"function": "GetQuantumExtent"
},
"deprecated": false,
"signature_type": "Function",
"signature_version": "v1"
},
{
"id": "CVE-2016-7530-a1c32eb4",
"digest": {
"length": 879.0,
"function_hash": "332167042944695826360154094160881951975"
},
"source": "https://github.com/imagemagick/imagemagick/commit/b5ed738f8060266bf4ae521f7e3ed145aa4498a3",
"target": {
"file": "magick/quantum.c",
"function": "SetQuantumDepth"
},
"deprecated": false,
"signature_type": "Function",
"signature_version": "v1"
},
{
"id": "CVE-2016-7530-b7ca42a0",
"digest": {
"length": 1771.0,
"function_hash": "137741905161572851935849278483869719322"
},
"source": "https://github.com/imagemagick/imagemagick/commit/63346f34f9d19179599b5b256e5e8d3dda46435c",
"target": {
"file": "Magick++/tests/appendImages.cpp",
"function": "main"
},
"deprecated": false,
"signature_type": "Function",
"signature_version": "v1"
},
{
"id": "CVE-2016-7530-ec53b826",
"digest": {
"length": 920.0,
"function_hash": "81852159700192920520102896297840322435"
},
"source": "https://github.com/imagemagick/imagemagick/commit/c4e63ad30bc42da691f2b5f82a24516dd6b4dc70",
"target": {
"file": "MagickCore/quantum.c",
"function": "SetQuantumDepth"
},
"deprecated": false,
"signature_type": "Function",
"signature_version": "v1"
}
]