CVE-2016-10057

Name of the Vulnerable Software and Affected Versions ImageMagick versions prior to 6.9.5-8

Description The issue is caused by a buffer overflow in the WriteGROUP4Image function. This can be exploited by a remote attacker using a specially crafted file, potentially leading to a denial of service (application crash) or other unspecified impacts.

Recommendations For versions prior to 6.9.5-8, update to version 6.9.5-8 or later to resolve the issue. As a temporary workaround, consider restricting the use of the WriteGROUP4Image function until a patch is available. Avoid using specially crafted files that could trigger the buffer overflow in the affected function.