A heap-based buffer over-read in SampleImage() in MagickCore/resize.c in ImageMagick 7.0.6-8 Q16 allows remote attackers to cause a denial of service via a crafted file. Upstream issue: https://github.com/ImageMagick/ImageMagick/issues/717 Upstream patch: https://github.com/ImageMagick/ImageMagick/commit/c5402b6e0fcf8b694ae2af6a6652ebb8ce0ccf46
Created ImageMagick tracking bugs for this issue: Affects: fedora-all [bug 1488981]