CVE-2019-14980

Published: Aug 12, 2019Modified: Nov 21, 2024

6.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Exploitability: 2.8 / Impact: 3.6

Source: NVD

Description

In ImageMagick 7.x before 7.0.8-42 and 6.x before 6.9.10-42, there is a use after free vulnerability in the UnmapBlob function that allows an attacker to cause a denial of service by sending a crafted file.

Affected (4)

Products: Imagemagick: Imagemagick · Opensuse: Leap

1 product

1 product

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Imagemagick Imagemagick	From 6.0 to 6.9.10-42
Imagemagick Imagemagick	From 7.0.0-0 to 7.0.8-42

Configuration B

2 vulnerable

Vulnerable Software	Affected Versions
Opensuse Leap	Version 15.0
Opensuse Leap	Version 15.1

Related CWEs

CWE-416

Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

References (12)

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00040.html

Source: cve@mitre.org

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00042.html

Source: cve@mitre.org

Mailing ListThird Party Advisory

https://github.com/ImageMagick/ImageMagick/commit/c5d012a46ae22be9444326aa37969a3f75daa3ba

Source: cve@mitre.org

Patch

https://github.com/ImageMagick/ImageMagick/compare/7.0.8-41...7.0.8-42

Source: cve@mitre.org

Patch

https://github.com/ImageMagick/ImageMagick6/commit/614a257295bdcdeda347086761062ac7658b6830

Source: cve@mitre.org

Patch

https://github.com/ImageMagick/ImageMagick6/issues/43

Source: cve@mitre.org

Issue TrackingThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00040.html