CVE-2017-8347

Name of the Vulnerable Software and Affected Versions ImageMagick versions 7.0.5-5

Description The issue is related to the ReadEXRImage function in exr.c, which is part of the ImageMagick console graphic editor. It is caused by a buffer overflow in memory, allowing a remote attacker to cause a denial of service, specifically a memory leak, by using a specially crafted file.

Recommendations For ImageMagick version 7.0.5-5, consider disabling the ReadEXRImage function as a temporary workaround until a patch is available. Restrict access to the exr.c module to minimize the risk of exploitation. Avoid using specially crafted files that could trigger the memory leak until the issue is resolved.