CVE-2016-9773 (retired)

Priority
Description
Heap-based buffer overflow in the IsPixelGray function in
MagickCore/pixel-accessor.h in ImageMagick 7.0.3.8 allows remote attackers
to cause a denial of service (out-of-bounds heap read) via a crafted image
file. NOTE: this vulnerability exists because of an incomplete fix for
CVE-2016-9556.
Notes
 mdeslaur> only affects ImageMagick-7 branch, see
 mdeslaur> https://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=31045
Package
Upstream:needed
Ubuntu 14.04 LTS (Trusty Tahr):not-affected (code not present)
Ubuntu 16.04 LTS (Xenial Xerus):not-affected (code not present)
Patches:
Upstream:https://github.com/ImageMagick/ImageMagick/commit/4e8c2ed53fcb54a34b3a6185b2584f26cf6874a3
More Information

Updated: 2019-03-26 12:23:40 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)