CVE-2012-1186 (retired)

Priority
Description
Integer overflow in the SyncImageProfiles function in profile.c in
ImageMagick 6.7.5-8 and earlier allows remote attackers to cause a denial
of service (infinite loop) via crafted IOP tag offsets in the IFD in an
image. NOTE: this vulnerability exists because of an incomplete fix for
CVE-2012-0248.
Notes
 mdeslaur> incomplete fix for CVE-2012-0248
 mdeslaur> see fixes in CVE-2012-0247
Package
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):released (8:6.6.9.7-5ubuntu3.1)
More Information

Updated: 2019-03-26 12:01:14 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)