A heap-based buffer overflow vulnerability was found in ImageMagick in versions prior to 7.0.11-14 in ReadTIFFImage() in coders/tiff.c. This issue is due to an incorrect setting of the pixel array size, which can lead to a crash and segmentation fault.
{ "vanir_signatures": [ { "deprecated": false, "signature_type": "Function", "source": "https://github.com/imagemagick/imagemagick/commit/930ff0d1a9bc42925a7856e9ea53f5fc9f318bf3", "target": { "file": "coders/tiff.c", "function": "ReadTIFFImage" }, "signature_version": "v1", "digest": { "function_hash": "337692096874583007095303878942000250678", "length": 23289.0 }, "id": "CVE-2021-3610-4c433240" }, { "deprecated": false, "signature_type": "Line", "source": "https://github.com/imagemagick/imagemagick/commit/930ff0d1a9bc42925a7856e9ea53f5fc9f318bf3", "target": { "file": "coders/tiff.c" }, "signature_version": "v1", "digest": { "threshold": 0.9, "line_hashes": [ "265167300434101916127528498929986453372", "20286381383144019747206299777507796346", "297416818085744149494297659001106252363", "33010110597554517715084524578468146146" ] }, "id": "CVE-2021-3610-e3c98882" } ] }