← back
CVE-2019-14980

CVE-2019-14980

EPSS 1.9%
In ImageMagick 7.x before 7.0.8-42 and 6.x before 6.9.10-42, there is a use after free vulnerability in the UnmapBlob function that allows an attacker to cause a denial of service by sending a crafted file.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00040.htmlhttp://lists.opensuse.org/opensuse-security-announce/2019-11/msg00042.htmlhttps://github.com/ImageMagick/ImageMagick6/commit/614a257295bdcdeda347086761062ac7658b6830https://github.com/ImageMagick/ImageMagick6/issues/43https://github.com/ImageMagick/ImageMagick/commit/c5d012a46ae22be9444326aa37969a3f75daa3bahttps://github.com/ImageMagick/ImageMagick/compare/7.0.8-41...7.0.8-42