CVE-2013-4589

Name of the Vulnerable Software and Affected Versions GraphicsMagick versions prior to 1.3.18

Description The issue is related to the ExportAlphaQuantumType function in export.c, which might allow remote attackers to cause a denial of service (crash) via vectors related to exporting the alpha of an 8-bit RGBA image.

Recommendations For versions prior to 1.3.18, update to version 1.3.18 or later to resolve the issue. As a temporary workaround, consider restricting the use of the ExportAlphaQuantumType function when exporting the alpha of an 8-bit RGBA image until a patch is available.