In ImageMagick 7.0.8-50 Q16, ComplexImages in MagickCore/fourier.c has a heap-based buffer over-read because of incorrect calls to GetCacheViewVirtualPixels.
{ "vanir_signatures": [ { "digest": { "threshold": 0.9, "line_hashes": [ "107039319094534233459899672724015603763", "300907676042457378491028998903656704899", "258789980677194204827133732957973698259", "98396046694004745346641873967204213952", "16609759891352372955633132324872435404", "171306803706347339008185756846853312766", "54845723254721807117608976660925929873", "53581535829531253173127144641383595340", "269480141399439429389727619415819202975", "131931772266427797276813800300612733477", "99260521975177407704976687137816632044", "111763796104431721897833080136492965076" ] }, "signature_version": "v1", "signature_type": "Line", "source": "https://github.com/imagemagick/imagemagick6/commit/f6ffc702c6eecd963587273a429dcd608c648984", "id": "CVE-2019-13391-641bdf64", "deprecated": false, "target": { "file": "magick/annotate.c" } }, { "digest": { "threshold": 0.9, "line_hashes": [ "95719630177689243724000403292770483857", "226440157048752222128880505260069292129", "89358669173108689338315829077786013297", "30200099785893160344646358985377202476", "97312912628335060461077707370335070453", "160185999482082909368997111384432912583", "237959385786109288622739074413763412468" ] }, "signature_version": "v1", "signature_type": "Line", "source": "https://github.com/imagemagick/imagemagick6/commit/f6ffc702c6eecd963587273a429dcd608c648984", "id": "CVE-2019-13391-7d85f0f4", "deprecated": false, "target": { "file": "magick/fourier.c" } }, { "digest": { "function_hash": "173226685245404884950421539089126742159", "length": 5117.0 }, "signature_version": "v1", "signature_type": "Function", "source": "https://github.com/imagemagick/imagemagick/commit/7c2c5ba5b8e3a0b2b82f56c71dfab74ed4006df7", "id": "CVE-2019-13391-a524df4b", "deprecated": false, "target": { "file": "MagickCore/fourier.c", "function": "ComplexImages" } }, { "digest": { "threshold": 0.9, "line_hashes": [ "95719630177689243724000403292770483857", "226440157048752222128880505260069292129", "89358669173108689338315829077786013297", "30200099785893160344646358985377202476", "97312912628335060461077707370335070453", "160185999482082909368997111384432912583", "15403057840956322812356369882112124263" ] }, "signature_version": "v1", "signature_type": "Line", "source": "https://github.com/imagemagick/imagemagick/commit/7c2c5ba5b8e3a0b2b82f56c71dfab74ed4006df7", "id": "CVE-2019-13391-b64bbf88", "deprecated": false, "target": { "file": "MagickCore/fourier.c" } }, { "digest": { "function_hash": "335819216815454812055603648225105956869", "length": 8186.0 }, "signature_version": "v1", "signature_type": "Function", "source": "https://github.com/imagemagick/imagemagick6/commit/f6ffc702c6eecd963587273a429dcd608c648984", "id": "CVE-2019-13391-bbfd7226", "deprecated": false, "target": { "file": "magick/fourier.c", "function": "ComplexImages" } }, { "digest": { "function_hash": "137138896715302981548322972716948814151", "length": 8758.0 }, "signature_version": "v1", "signature_type": "Function", "source": "https://github.com/imagemagick/imagemagick6/commit/f6ffc702c6eecd963587273a429dcd608c648984", "id": "CVE-2019-13391-c770e59f", "deprecated": false, "target": { "file": "magick/annotate.c", "function": "AnnotateImage" } }, { "digest": { "threshold": 0.9, "line_hashes": [ "107039319094534233459899672724015603763", "300907676042457378491028998903656704899", "258789980677194204827133732957973698259", "98396046694004745346641873967204213952", "16609759891352372955633132324872435404", "171306803706347339008185756846853312766", "54845723254721807117608976660925929873", "53581535829531253173127144641383595340", "269480141399439429389727619415819202975", "131931772266427797276813800300612733477", "99260521975177407704976687137816632044", "111763796104431721897833080136492965076" ] }, "signature_version": "v1", "signature_type": "Line", "source": "https://github.com/imagemagick/imagemagick/commit/7c2c5ba5b8e3a0b2b82f56c71dfab74ed4006df7", "id": "CVE-2019-13391-eb30046f", "deprecated": false, "target": { "file": "MagickCore/annotate.c" } }, { "digest": { "function_hash": "36509652047660522237986283220020408466", "length": 8809.0 }, "signature_version": "v1", "signature_type": "Function", "source": "https://github.com/imagemagick/imagemagick/commit/7c2c5ba5b8e3a0b2b82f56c71dfab74ed4006df7", "id": "CVE-2019-13391-ebbbd31e", "deprecated": false, "target": { "file": "MagickCore/annotate.c", "function": "AnnotateImage" } } ] }