1765330 – (CVE-2019-17540) CVE-2019-17540 ImageMagick: heap-based buffer overflow in ReadPSInfo in coders/ps.c

Bug 1765330 (CVE-2019-17540) - CVE-2019-17540 ImageMagick: heap-based buffer overflow in ReadPSInfo in coders/ps.c

Summary: CVE-2019-17540 ImageMagick: heap-based buffer overflow in ReadPSInfo in coder...

Keywords:
Status:	CLOSED ERRATA
Alias:	CVE-2019-17540
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	1765335 1770631
Blocks:	1765337
TreeView+	depends on / blocked

Reported:	2019-10-24 20:34 UTC by Guilherme de Almeida Suckevicz
Modified:	2020-04-07 04:23 UTC (History)
CC List:	6 users (show)
Fixed In Version:	ImageMagick 6.9.10-55, ImageMagick 7.0.8-54
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:	2020-03-31 22:35:38 UTC
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Product Errata	RHSA-2020:1180	0	None	None	None	2020-03-31 19:32:59 UTC

Description Guilherme de Almeida Suckevicz 2019-10-24 20:34:10 UTC

ImageMagick before 7.0.8-54 has a heap-based buffer overflow in ReadPSInfo in coders/ps.c.

Reference:
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15826

Upstream commits:
https://github.com/ImageMagick/ImageMagick/compare/7.0.8-53...7.0.8-54
https://github.com/ImageMagick/ImageMagick/compare/master@%7B2019-07-15%7D...master@%7B2019-07-17%7D

Comment 1 Guilherme de Almeida Suckevicz 2019-10-24 20:39:29 UTC

Created ImageMagick tracking bugs for this issue:

Affects: fedora-all [bug 1765335]

Comment 2 Huzaifa S. Sidhpurwala 2019-11-11 01:10:04 UTC

Upstream patchset: https://github.com/imagemagick/imagemagick/compare/ad63c1c0ff19ce44d8c50512a238997a37d1e178...08af6505d26238d234b8ddf555f886301a3e7f76#diff-dd232d4da9772957b420ca411a1ddde3

Comment 5 Tomas Hoger 2020-03-25 17:54:57 UTC

ImageMagick 7 fix:

https://github.com/ImageMagick/ImageMagick/compare/1ad4c59...e868e22

ImageMagick 6 fix:

https://github.com/ImageMagick/ImageMagick6/compare/adb2da9...41399a3
https://github.com/ImageMagick/ImageMagick6/commit/4ba4dc7

Comment 6 errata-xmlrpc 2020-03-31 19:32:58 UTC

This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7

Via RHSA-2020:1180 https://access.redhat.com/errata/RHSA-2020:1180

Comment 7 Product Security DevOps Team 2020-03-31 22:35:38 UTC

This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):

https://access.redhat.com/security/cve/cve-2019-17540

Note You need to log in before you can comment on or make changes to this bug.