CVE-2017-14625

Name of the Vulnerable Software and Affected Versions ImageMagick versions 7.0.7-0 Q16

Description The issue is related to a NULL Pointer Dereference vulnerability in the sixel output create function, located in coders/sixel.c. This vulnerability can be exploited by a remote attacker to impact the confidentiality, integrity, and availability of protected information.

Recommendations For ImageMagick version 7.0.7-0 Q16, consider disabling the sixel output create function as a temporary workaround until a patch is available. Restrict access to the coders/sixel.c module to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.