A vulnerability was found in ImageMagick before 7.0.9-0 allows remote attackers to cause a denial of service because XML_PARSE_HUGE is not properly restricted in coders/svg.c, related to SVG and libxml2. Reference: https://github.com/ImageMagick/ImageMagick/commit/ec9c8944af2bfc65c697ca44f93a727a99b405f1
Created ImageMagick tracking bugs for this issue: Affects: epel-8 [bug 1820589] Affects: fedora-all [bug 1820588]
Upstream fixes: https://github.com/ImageMagick/ImageMagick/commit/ec9c8944af2bfc65c697ca44f93a727a99b405f1 https://github.com/ImageMagick/ImageMagick6/commit/6ba5e4b1673d75988d8dde38118b495a342823c8