CVE-2019-7397

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions ImageMagick versions prior to 7.0.8-25 GraphicsMagick versions prior to 1.3.32

Description The issue is related to memory management errors in the WritePDFImage function of graphic editors ImageMagick and GraphicsMagick. Exploitation of this issue may allow a remote attacker to execute arbitrary code or cause a denial of service using a specially crafted image.

Recommendations For ImageMagick versions prior to 7.0.8-25, update to version 7.0.8-25 or later. For GraphicsMagick versions prior to 1.3.32, update to version 1.3.32 or later.

Exploit

Fix

Memory Leak

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-401CWE-399

Related Identifiers

ALT-PU-2019-1435

ALT-PU-2020-2894

ALT-PU-2021-1452

BDU:2020-03283

CESA-2020_1180

CVE-2019-7397

DSA-4712-1

MGASA-2019-0115

OPENSUSE-SU-2019:0215-1

OPENSUSE-SU-2019:0235-1

OPENSUSE-SU-2019:1141-1

OPENSUSE-SU-2019_0214-1

OPENSUSE-SU-2019_0215-1

OPENSUSE-SU-2019_1141-1

OPENSUSE-SU-2019_1320-1

RHSA-2020:1180

RHSA-2020_1180

SUSE-SU-2019:0739-1

SUSE-SU-2019:1033-1

SUSE-SU-2019:1033-2

SUSE-SU-2019:13993-1

SUSE-SU-2019:13995-1

SUSE-SU-2019_13995-1

USN-4034-1

USN-7068-1

Affected Products

Alt Linux

Centos

Graphicsmagick

Imagemagick

Red Hat

Suse

Ubuntu

CVE-2019-7397

Weakness Enumeration

Related Identifiers

Affected Products

References · 132