magick/attribute.c in ImageMagick 7.0.3-2 allows remote attackers to cause a denial of service (use-after-free) via a crafted file.
{ "vanir_signatures": [ { "source": "https://github.com/imagemagick/imagemagick/commit/90406972f108c4da71f998601b06abdc2ac6f06e", "signature_version": "v1", "id": "CVE-2016-7906-1d3145df", "deprecated": false, "target": { "file": "MagickCore/attribute.c" }, "digest": { "line_hashes": [ "107807159509500034816647423314642211700", "68858660467834400425474470351640526495", "187865239751367899072392723382070485475", "299782843773815210996105039440844061836" ], "threshold": 0.9 }, "signature_type": "Line" }, { "source": "https://github.com/imagemagick/imagemagick/commit/90406972f108c4da71f998601b06abdc2ac6f06e", "signature_version": "v1", "id": "CVE-2016-7906-cb32bd4a", "deprecated": false, "target": { "file": "MagickCore/attribute.c", "function": "SetImageType" }, "digest": { "function_hash": "92243971982347717171807797241448899910", "length": 4289.0 }, "signature_type": "Function" } ] }