CVE-2019-15140

Priority
Description
coders/mat.c in ImageMagick 7.0.8-43 Q16 allows remote attackers to cause a
denial of service (use-after-free and application crash) or possibly have
unspecified other impact by crafting a Matlab image file that is mishandled
in ReadImage in MagickCore/constitute.c.
Notes
Package
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.04 LTS (Xenial Xerus):released (8:6.8.9.9-7ubuntu5.15)
Ubuntu 18.04 LTS (Bionic Beaver):released (8:6.9.7.4+dfsg-16ubuntu6.8)
Ubuntu 19.04 (Disco Dingo):released (8:6.9.10.14+dfsg-7ubuntu2.3)
Ubuntu 19.10 (Eoan Ermine):released (8:6.9.10.23+dfsg-2.1ubuntu3.1)
Ubuntu 20.04 (Focal Fossa):released (8:6.9.10.23+dfsg-2.1ubuntu9)
Patches:
Upstream:https://github.com/ImageMagick/ImageMagick6/commit/5caef6e97f3f575cf7bea497865a4c1e624b8010
More Information

Updated: 2019-12-05 21:09:59 UTC (commit 0aa5e7c87c8b55d2ec5c7f4ca1179cf75de91961)