CVE-2019-19949

Priority
Description
In ImageMagick 7.0.8-43 Q16, there is a heap-based buffer over-read in the
function WritePNGImage of coders/png.c, related to
Magick_png_write_raw_profile and LocaleNCompare.
Notes
Package
Upstream:needs-triage
Ubuntu 18.04 LTS:released (8:6.9.7.4+dfsg-16ubuntu6.9)
Ubuntu 20.04 LTS:released (8:6.9.10.23+dfsg-2.1ubuntu11.1)
Ubuntu 16.04 ESM:released (8:6.8.9.9-7ubuntu5.16)
Ubuntu 14.04 ESM:DNE
Patches:
Upstream:https://github.com/ImageMagick/ImageMagick/commit/d17c047f7bff7c0edbf304470cd2ab9d02fbf617 (7.x)
Upstream:https://github.com/ImageMagick/ImageMagick6/commit/34adc98afd5c7e7fb774d2ebdaea39e831c24dce (6.x)
More Information

Updated: 2022-04-13 13:53:42 UTC (commit f411bd370d482ef4385c4e751d121a4055fbc009)