ImageMagick 7.0.8-50 Q16 has a heap-based buffer over-read at MagickCore/threshold.c in AdaptiveThresholdImage because a height of zero is mishandled.
{ "vanir_signatures": [ { "digest": { "function_hash": "235955745071647266351482265208538814416", "length": 4717.0 }, "id": "CVE-2019-13297-20d86cae", "source": "https://github.com/imagemagick/imagemagick6/commit/35c7032723d85eee7318ff6c82f031fa2666b773", "signature_version": "v1", "signature_type": "Function", "target": { "file": "magick/threshold.c", "function": "AdaptiveThresholdImage" }, "deprecated": false }, { "digest": { "function_hash": "293774822276901381121692040320794529384", "length": 3884.0 }, "id": "CVE-2019-13297-95498ca3", "source": "https://github.com/imagemagick/imagemagick/commit/604588fc35c7585abb7a9e71f69bb82e4389fefc", "signature_version": "v1", "signature_type": "Function", "target": { "file": "MagickCore/threshold.c", "function": "AdaptiveThresholdImage" }, "deprecated": false }, { "digest": { "threshold": 0.9, "line_hashes": [ "117598967055875212079018179199311819921", "133681935158990302008425794363574872644", "208702601358116156630648525031441984189", "332840740244699029697185092650489018364" ] }, "id": "CVE-2019-13297-b572764d", "source": "https://github.com/imagemagick/imagemagick/commit/604588fc35c7585abb7a9e71f69bb82e4389fefc", "signature_version": "v1", "signature_type": "Line", "target": { "file": "MagickCore/threshold.c" }, "deprecated": false }, { "digest": { "threshold": 0.9, "line_hashes": [ "117598967055875212079018179199311819921", "133681935158990302008425794363574872644", "297672351830198098392830777990473090885", "119584949241414408407604300930421357817" ] }, "id": "CVE-2019-13297-dc7f6b94", "source": "https://github.com/imagemagick/imagemagick6/commit/35c7032723d85eee7318ff6c82f031fa2666b773", "signature_version": "v1", "signature_type": "Line", "target": { "file": "magick/threshold.c" }, "deprecated": false } ] }