The WriteTHUMBNAILImage function in coders/thumbnail.c in ImageMagick through 7.0.6-10 allows an attacker to cause a denial of service (buffer over-read) by sending a crafted JPEG file.
{ "vanir_signatures": [ { "digest": { "line_hashes": [ "201574829055882073682823747988023744741", "281411365007837298567174748174081729524", "187434976871069825458001900389895480189", "37033304517079638609531138597618694606" ], "threshold": 0.9 }, "target": { "file": "coders/jp2.c" }, "signature_version": "v1", "signature_type": "Line", "id": "CVE-2017-13769-28ea5f26", "source": "https://github.com/imagemagick/imagemagick6/commit/2f74aa6457d35e511175b1f86b80012d5d4751c7", "deprecated": false }, { "digest": { "length": 7262.0, "function_hash": "258707320293750171487029545559793909725" }, "target": { "function": "WriteJP2Image", "file": "coders/jp2.c" }, "signature_version": "v1", "signature_type": "Function", "id": "CVE-2017-13769-54186a86", "source": "https://github.com/imagemagick/imagemagick6/commit/2f74aa6457d35e511175b1f86b80012d5d4751c7", "deprecated": false } ] }