mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-16 00:18:04 +02:00
0xMarcio
869 B
869 B
CVE-2015-8895
Description
Integer overflow in coders/icon.c in ImageMagick 6.9.1-3 and later allows remote attackers to cause a denial of service (application crash) via a crafted length value, which triggers a buffer overflow.
POC
Reference
- http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
- http://www.securityfocus.com/bid/91025
- https://github.com/ImageMagick/ImageMagick/commit/0f6fc2d5bf8f500820c3dbcf0d23ee14f2d9f734