Bug 1625430 – CVE-2018-16413 ImageMagick: heap-based buffer over-read in the PushShortPixel function in MagickCore/quantum-private.h

Bugzilla will be upgraded to version 5.0 on a still to be determined date in the near future. The original upgrade date has been delayed.

Bug 1625430 - (CVE-2018-16413) CVE-2018-16413 ImageMagick: heap-based buffer over-read in the PushShortPixel function in MagickCore/quantum-private.h

Summary:	CVE-2018-16413 ImageMagick: heap-based buffer over-read in the PushShortPixel...

Status:	CLOSED NOTABUG

Aliases:	CVE-2018-16413

Product:	Security Response
Classification:	Other
Component:	vulnerability (Show other bugs)
Sub Component:
Version:	unspecified
Hardware:	All Linux

Priority	low Severity low
Target Milestone:	---
Target Release:	---
Assigned To:	Red Hat Product Security
QA Contact:
Docs Contact:

URL:
Whiteboard:	impact=low,public=20180819,reported=2...
Keywords:	Security

Depends On:	1625431
Blocks:	1625433
	Show dependency tree / graph

Reported:	2018-09-04 18:15 EDT by Laura Pardo
Modified:	2018-10-05 10:19 EDT (History)
CC List:	3 users (show)

See Also:
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Story Points:	---
Clone Of:
Environment:
Last Closed:	2018-10-05 10:19:56 EDT
Type:	---
Regression:	---
Mount Type:	---
Documentation:	---
CRM:
Verified Versions:
Category:	---
oVirt Team:	---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team:	---

Attachments	(Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Groups: None (edit)

Description Laura Pardo 2018-09-04 18:15:49 EDT

A flaw was found in ImageMagick 7.0.8-11 Q16 has a heap-based buffer over-read in the MagickCore/quantum-private.h PushShortPixel function when called from the coders/psd.c ParseImageResourceBlocks function.


References:
https://github.com/ImageMagick/ImageMagick/issues/1249
https://github.com/ImageMagick/ImageMagick/issues/1251

Comment 1 Laura Pardo 2018-09-04 18:16:24 EDT

Created ImageMagick tracking bugs for this issue:

Affects: fedora-all [bug 1625431]

Comment 2 Riccardo Schirone 2018-09-18 08:48:11 EDT

Upstream patches:
https://github.com/ImageMagick/ImageMagick6/commit/4745eb1047617330141e9abfd5ae01236a71ae12
https://github.com/ImageMagick/ImageMagick/commit/17a1a6f97fd088a71931bdc422f4e96bb6ffc549

Comment 3 Riccardo Schirone 2018-09-18 08:50:34 EDT

This seems a duplicate of CVE-2018-16412, because they have the same patch and they are caused by the same issue.

Note You need to log in before you can comment on or make changes to this bug.