A NULL pointer dereference was found in ImageMagick in ReadSVGImage() in coders/svg.c because it does not check the return value from libxml2's xmlCreatePushParserCtxt() and use the value directly which can lead to crash and segmentation fault. This flaw affects ImageMagick versions prior to 7.0.10.31. Reference: https://github.com/ImageMagick/ImageMagick/issues/2624 Upstream patch: https://github.com/ImageMagick/ImageMagick/commit/43dfb1894761c4929d5d5c98dc80ba4e59a0d114
Created ImageMagick tracking bugs for this issue: Affects: fedora-all [bug 1970570]
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2021-3596