The WriteTHUMBNAILImage function in coders/thumbnail.c in ImageMagick through 7.0.6-10 allows an attacker to cause a denial of service (buffer over-read) by sending a crafted JPEG file.
{ "vanir_signatures": [ { "id": "CVE-2017-13769-28ea5f26", "signature_type": "Line", "target": { "file": "coders/jp2.c" }, "digest": { "line_hashes": [ "201574829055882073682823747988023744741", "281411365007837298567174748174081729524", "187434976871069825458001900389895480189", "37033304517079638609531138597618694606" ], "threshold": 0.9 }, "deprecated": false, "signature_version": "v1", "source": "https://github.com/imagemagick/imagemagick6/commit/2f74aa6457d35e511175b1f86b80012d5d4751c7" }, { "id": "CVE-2017-13769-54186a86", "signature_type": "Function", "target": { "file": "coders/jp2.c", "function": "WriteJP2Image" }, "digest": { "function_hash": "258707320293750171487029545559793909725", "length": 7262.0 }, "deprecated": false, "signature_version": "v1", "source": "https://github.com/imagemagick/imagemagick6/commit/2f74aa6457d35e511175b1f86b80012d5d4751c7" } ] }