CVE-2016-10064

Name of the Vulnerable Software and Affected Versions ImageMagick versions prior to 6.9.5-1

Description The issue is caused by a buffer overflow in the coders/tiff.c file, allowing remote attackers to cause a denial of service, such as an application crash, or have other unspecified impact via a crafted file.

Recommendations For versions prior to 6.9.5-1, update to version 6.9.5-1 or later to resolve the issue. As a temporary workaround, consider restricting the use of the coders/tiff.c file until a patch is available. Avoid using the vulnerable component with untrusted input files until the issue is resolved.