CVE-2019-14980
CVE-2019-14980
In ImageMagick 7.x before 7.0.8-42 and 6.x before 6.9.10-42, there is a use after free vulnerability in the UnmapBlob function that allows an attacker to cause a denial of service by sending a crafted file.
Productos afectados
n/a · n/a¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00040.htmlhttp://lists.opensuse.org/opensuse-security-announce/2019-11/msg00042.htmlhttps://github.com/ImageMagick/ImageMagick6/commit/614a257295bdcdeda347086761062ac7658b6830https://github.com/ImageMagick/ImageMagick6/issues/43https://github.com/ImageMagick/ImageMagick/commit/c5d012a46ae22be9444326aa37969a3f75daa3bahttps://github.com/ImageMagick/ImageMagick/compare/7.0.8-41...7.0.8-42