CVE-2016-10052

Name of the Vulnerable Software and Affected Versions ImageMagick versions prior to 6.9.5-6

Description The issue is related to a buffer overflow in the WriteProfile function in coders/jpeg.c. This can be exploited by remote attackers using a crafted file, potentially causing a denial of service (application crash) or having other unspecified impacts.

Recommendations For versions prior to 6.9.5-6, update to version 6.9.5-6 or later to resolve the issue. As a temporary workaround, consider restricting the use of the WriteProfile function in coders/jpeg.c to minimize the risk of exploitation. Avoid using crafted files that could trigger the buffer overflow until the issue is resolved.