CVE-2016-7533

The ReadWPGImage function in coders/wpg.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted WPG file.

References

Affected packages

Git / github.com/imagemagick/imagemagick

Affected ranges

Type: GIT
Repo: https://github.com/imagemagick/imagemagick
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

bef1e4f637d8f665bc133a9c6d30df08d983bc3a

Database specific

vanir_signatures

[
    {
        "id": "CVE-2016-7533-5b400343",
        "source": "https://github.com/imagemagick/imagemagick/commit/bef1e4f637d8f665bc133a9c6d30df08d983bc3a",
        "signature_type": "Line",
        "target": {
            "file": "coders/wpg.c"
        },
        "deprecated": false,
        "digest": {
            "line_hashes": [
                "146963719867350905323832437157334633393",
                "63323286185015804919621751479746811072",
                "224879752858316220129329021976532648775",
                "30610112973730510575358171793657714080"
            ],
            "threshold": 0.9
        },
        "signature_version": "v1"
    },
    {
        "id": "CVE-2016-7533-8be78da0",
        "source": "https://github.com/imagemagick/imagemagick/commit/bef1e4f637d8f665bc133a9c6d30df08d983bc3a",
        "signature_type": "Function",
        "target": {
            "file": "coders/wpg.c",
            "function": "ReadWPGImage"
        },
        "deprecated": false,
        "digest": {
            "length": 11845.0,
            "function_hash": "134345824390545059260617493734294959985"
        },
        "signature_version": "v1"
    }
]

Git / github.com/imagemagick/imagemagick6

Affected ranges

Type: GIT
Repo: https://github.com/imagemagick/imagemagick6
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

4bae9bed8a79e031884ca9a4681dce89dbd26855