CVE-2017-13658

In ImageMagick before 6.9.9-3 and 7.x before 7.0.6-3, there is a missing NULL check in the ReadMATImage function in coders/mat.c, leading to a denial of service (assertion failure and application exit) in the DestroyImageInfo function in MagickCore/image.c.

References

Affected packages

Git / github.com/imagemagick/imagemagick

Affected ranges

Type: GIT
Repo: https://github.com/imagemagick/imagemagick
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

e5c063a1007506ba69e97a35effcdef944421c89

Database specific

vanir_signatures

[
    {
        "deprecated": false,
        "source": "https://github.com/imagemagick/imagemagick/commit/e5c063a1007506ba69e97a35effcdef944421c89",
        "id": "CVE-2017-13658-59c036bf",
        "digest": {
            "function_hash": "293712838801584744090017267013273637519",
            "length": 11829.0
        },
        "target": {
            "function": "ReadMATImage",
            "file": "coders/mat.c"
        },
        "signature_type": "Function",
        "signature_version": "v1"
    },
    {
        "deprecated": false,
        "source": "https://github.com/imagemagick/imagemagick/commit/e5c063a1007506ba69e97a35effcdef944421c89",
        "id": "CVE-2017-13658-a57e7ea9",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "196372200781272399580337409078976674031",
                "150586695525905005355183413701924109268",
                "10433274608074049300448930201816478828",
                "297997508868761914743686034058668692117"
            ]
        },
        "target": {
            "file": "coders/mat.c"
        },
        "signature_type": "Line",
        "signature_version": "v1"
    }
]

Git / github.com/imagemagick/imagemagick6

Affected ranges

Type: GIT
Repo: https://github.com/imagemagick/imagemagick6
Events: Introduced

0 Unknown introduced commit / All previous commits are affected