CVE-2016-10059

Name of the Vulnerable Software and Affected Versions ImageMagick versions prior to 6.9.4-1

Description The issue is caused by a buffer overflow in the coders/tiff.c component of the ImageMagick console graphic editor. This can be exploited by a remote attacker using a specially crafted TIFF file, potentially leading to a denial of service (application crash) or other unspecified impacts.

Recommendations For versions prior to 6.9.4-1, update to version 6.9.4-1 or later to resolve the issue. As a temporary workaround, consider restricting the use of TIFF files in ImageMagick until a patch is applied.