Several bugs in the WPG parser were found that could lead to a heap overflow and random invalid memory writes. These bugs only seem to appear when a memory limit is set. Upstream patches: https://github.com/ImageMagick/ImageMagick/commit/fc43974d34318c834fbf78570ca1a3764ed8c7d7 https://github.com/ImageMagick/ImageMagick/commit/aecd0ada163a4d6c769cec178955d5f3e9316f2f External References: https://blog.fuzzing-project.org/46-Various-invalid-memory-reads-in-ImageMagick-WPG,-DDS,-DCM.html CVE assignment: http://seclists.org/oss-sec/2016/q2/564
Created ImageMagick tracking bugs for this issue: Affects: fedora-all [bug 1348173]