CVE-2016-7540

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2016-7540
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-7540.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2016-7540
Downstream
Related
Published
2017-04-20T18:59:01Z
Modified
2025-09-16T06:28:15.600188Z
Severity
  • 6.5 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

coders/rgf.c in ImageMagick before 6.9.4-10 allows remote attackers to cause a denial of service (assertion failure) by converting an image to rgf format.

References

Affected packages

Debian:11 / imagemagick

Package

Name
imagemagick
Purl
pkg:deb/debian/imagemagick?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8:6.9.6.2+dfsg-2

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Debian:12 / imagemagick

Package

Name
imagemagick
Purl
pkg:deb/debian/imagemagick?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8:6.9.6.2+dfsg-2

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Debian:13 / imagemagick

Package

Name
imagemagick
Purl
pkg:deb/debian/imagemagick?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8:6.9.6.2+dfsg-2

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Debian:14 / imagemagick

Package

Name
imagemagick
Purl
pkg:deb/debian/imagemagick?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8:6.9.6.2+dfsg-2

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Git / github.com/imagemagick/imagemagick

Affected ranges

Type
GIT
Repo
https://github.com/imagemagick/imagemagick
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
a0108a892f9ea3c2bb1e7a49b7d71376c2ecbff7
Type
GIT
Repo
https://github.com/imagemagick/imagemagick6
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
ac6fdfbc6a3cbd157ddf4be79c28e41eeb8f5e03

Affected versions

6.*

6.9.4-0
6.9.4-1
6.9.4-2
6.9.4-3
6.9.4-4
6.9.4-5
6.9.4-6
6.9.4-7
6.9.4-8
6.9.4-9

Database specific 

{
    "vanir_signatures": [
        {
            "digest": {
                "function_hash": "12049306930972900207546801341701970175",
                "length": 1705.0
            },
            "deprecated": false,
            "source": "https://github.com/imagemagick/imagemagick/commit/a0108a892f9ea3c2bb1e7a49b7d71376c2ecbff7",
            "signature_version": "v1",
            "target": {
                "function": "WriteRGFImage",
                "file": "coders/rgf.c"
            },
            "id": "CVE-2016-7540-0f3936c2",
            "signature_type": "Function"
        },
        {
            "digest": {
                "line_hashes": [
                    "152325804923714907420968470529836421804",
                    "84301424894650318138066432171020510919",
                    "234922387320644358258213245342217358358",
                    "51442785406918849293590780145967866940",
                    "251438074872774134997583560468472281442",
                    "167803181383194225235087899938848609593",
                    "200901111645146455814300289342525793978",
                    "40075768361917823915384989034006703201",
                    "308808076207351079082644637064443533100",
                    "254324701600787937099010276317098783018",
                    "227827563996924995911966050103663540646",
                    "109732373276114927693704197373493646527",
                    "138390208596809178300399574284595220928",
                    "182649730746032925946507893592489575563",
                    "38473390972515348214488420349512980212",
                    "201665080610914159273620449077432595811",
                    "262275178370304367782308947148888410662",
                    "156538146669394591143662375432191019587",
                    "72626647418135403540226924215892263434"
                ],
                "threshold": 0.9
            },
            "deprecated": false,
            "source": "https://github.com/imagemagick/imagemagick/commit/a0108a892f9ea3c2bb1e7a49b7d71376c2ecbff7",
            "signature_version": "v1",
            "target": {
                "file": "coders/rgf.c"
            },
            "id": "CVE-2016-7540-bff98ddb",
            "signature_type": "Line"
        }
    ]
}