A flaw was found on ImageMagick 7.0.7-16 Q16 x86_64 2017-12-21, there is a stack-based buffer over-read in WriteWEBPImage in coders/webp.c, related to a WEBP_DECODER_ABI_VERSION check. [UPSTREAM BUG] https://github.com/ImageMagick/ImageMagick/issues/907 [TESTCASE] https://github.com/henices/pocs/raw/master/stack-buffer-overflow-0 [UPSTREAM PATCH] https://github.com/ImageMagick/ImageMagick/commit/663b3b432c202cd2aeda7ea7e82b74cce51ab1cf
Created ImageMagick tracking bugs for this issue: Affects: fedora-all [bug 1529323]