CVE-2006-4144

Name of the Vulnerable Software and Affected Versions ImageMagick versions prior to 6.2.9

Description The issue is related to an integer overflow in the ReadSGIImage function in sgi.c, which can be triggered by large values of bytes per pixel, columns, and rows. This can cause a denial of service (crash) and potentially allow the execution of arbitrary code via a heap-based buffer overflow.

Recommendations For versions prior to 6.2.9, update to version 6.2.9 or later to resolve the issue. As a temporary workaround, consider restricting the input values for bytes per pixel, columns, and rows to prevent large values from being processed.