CVE-2017-11526

Name of the Vulnerable Software and Affected Versions ImageMagick versions prior to 6.9.9-0 ImageMagick versions 7.x prior to 7.0.6-1

Description The issue is related to the ReadOneMNGImage function, which allows remote attackers to cause a denial of service due to large loop and CPU consumption via a crafted file. This is associated with uncontrolled resource consumption. Exploitation of the issue may enable a remote attacker to cause a denial of service by consuming computational resources using a specially formed file.

Recommendations For ImageMagick versions prior to 6.9.9-0, update to version 6.9.9-0 or later. For ImageMagick versions 7.x prior to 7.0.6-1, update to version 7.0.6-1 or later.