CVE-2016-7539
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2016-7539
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-7539.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2016-7539
- Downstream
- Related
- Published
- 2017-07-25T14:29:00Z
- Modified
- 2025-10-15T04:33:50Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
Memory leak in AcquireVirtualMemory in ImageMagick before 7 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors.
- References
-
- http://www.imagemagick.org/discourse-server/viewtopic.php?f=2&t=28946
- http://www.openwall.com/lists/oss-security/2016/09/22/2
- http://www.securityfocus.com/bid/93232
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=833101
- https://bugzilla.redhat.com/show_bug.cgi?id=1378776
- https://github.com/ImageMagick/ImageMagick/commit/4e81ce8b07219c69a9aeccb0f7f7b927ca6db74c
Affected packages
Git / github.com/imagemagick/imagemagick
Affected ranges
- Type
- GIT
- Repo
- https://github.com/imagemagick/imagemagick
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
- Type
- GIT
- Repo
- https://github.com/imagemagick/imagemagick6
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affected
Database specific
vanir_signatures
[
{
"signature_type": "Function",
"deprecated": false,
"source": "https://github.com/imagemagick/imagemagick/commit/4e81ce8b07219c69a9aeccb0f7f7b927ca6db74c",
"signature_version": "v1",
"target": {
"function": "OpenPixelCache",
"file": "magick/cache.c"
},
"digest": {
"function_hash": "2235505589031384017827335457312008253",
"length": 7392.0
},
"id": "CVE-2016-7539-18ce6e0c"
},
{
"signature_type": "Function",
"deprecated": false,
"source": "https://github.com/imagemagick/imagemagick/commit/4e81ce8b07219c69a9aeccb0f7f7b927ca6db74c",
"signature_version": "v1",
"target": {
"function": "AllocatePixelCachePixels",
"file": "magick/cache.c"
},
"digest": {
"function_hash": "246867006780945524853100790412864302142",
"length": 338.0
},
"id": "CVE-2016-7539-2afce535"
},
{
"signature_type": "Line",
"deprecated": false,
"source": "https://github.com/imagemagick/imagemagick/commit/4e81ce8b07219c69a9aeccb0f7f7b927ca6db74c",
"signature_version": "v1",
"target": {
"file": "magick/cache.c"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"40019894174321119446525151640192041204",
"26138887533552274854087949693450021858",
"89576766977506816275174459938593855357",
"156243666578442858963457837425925241744",
"48335167998963239311417172096958283061",
"304155805631621239438706497370244831381",
"156024217659521011766495039618397425713",
"58180297301696353380579126802614758895",
"248097936147814999490615476446330653091",
"262499192644320393878337617475380781242",
"54835938520203348950267039336530503928",
"69893041412723663130820714926635632358",
"277143947921129977134509999652766694300",
"110053689241216975347352403998695085874",
"242324442816331555525333867748810950154",
"196086803001180413687104663068961008033",
"27356018661227008913016502212655771494",
"38646085332609558889758227904897968950",
"147639160214037685769476399768827272264"
]
},
"id": "CVE-2016-7539-fc65bc25"
}
]