In ImageMagick 7.0.9, an out-of-bounds read vulnerability exists within the ReadHEICImageByID function in coders\heic.c. It can be triggered via an image with a width or height value that exceeds the actual size of the image. Reference: https://github.com/ImageMagick/ImageMagick/issues/1859
Created ImageMagick tracking bugs for this issue: Affects: epel-8 [bug 1813323] Affects: fedora-all [bug 1813324]
Upstream patch: https://github.com/ImageMagick/ImageMagick/commit/868aad754ee599eb7153b84d610f2ecdf7b339f6 https://github.com/ImageMagick/ImageMagick6/commit/3456724dff047db5adb32f8cf70c903c1b7d16d4
Support for HEIC images was added, according to the ChangeLogs, in upstream version 7.0.7-22 and 6.9.9-34.
Statement: This issue did not affect the versions of ImageMagick as shipped with Red Hat Enterprise Linux 5, 6, and 7 as they did not include support for HEIC images.
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2020-10251