CVE-2018-12599

CVE-2018-12599

EPSS 3.3%

In ImageMagick 7.0.8-3 Q16, ReadBMPImage and WriteBMPImage in coders/bmp.c allow attackers to cause an out of bounds write via a crafted file.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/ImageMagick/ImageMagick/issues/1177 https://lists.debian.org/debian-lts-announce/2018/06/msg00004.html https://usn.ubuntu.com/3711-1/https://www.debian.org/security/2018/dsa-4245