In coders/ps.c in ImageMagick 7.0.7-0 Q16, a DoS in ReadPSImage() due to lack of an EOF (End of File) check might cause huge CPU consumption. When a crafted PSD file, which claims a large "extent" field in the header but does not contain sufficient backing data, is provided, the loop over "length" would consume huge CPU resources, since there is no EOF check inside the loop.
https://github.com/ImageMagick/ImageMagick/commit/bdbbb13f1fe9b7e2465502c500561720f7456aac
https://github.com/ImageMagick/ImageMagick/issues/715
https://lists.debian.org/debian-lts-announce/2019/05/msg00015.html
https://lists.debian.org/debian-lts-announce/2020/09/msg00007.html
Source: MITRE
Published: 2017-09-07
Updated: 2020-10-15
Type: CWE-834
Base Score: 7.1
Vector: AV:N/AC:M/Au:N/C:N/I:N/A:C
Impact Score: 6.9
Exploitability Score: 8.6
Severity: HIGH
Base Score: 6.5
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Impact Score: 3.6
Exploitability Score: 2.8
Severity: MEDIUM
OR
OR
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
ID | Name | Product | Family | Severity |
---|---|---|---|---|
140297 | Debian DLA-2366-1 : imagemagick security update | Nessus | Debian Local Security Checks | high |
125093 | Debian DLA-1785-1 : imagemagick security update | Nessus | Debian Local Security Checks | high |
110516 | Ubuntu 14.04 LTS / 16.04 LTS / 17.10 / 18.04 LTS : ImageMagick vulnerabilities (USN-3681-1) | Nessus | Ubuntu Local Security Checks | high |
105455 | openSUSE Security Update : ImageMagick (openSUSE-2017-1413) | Nessus | SuSE Local Security Checks | high |
105409 | SUSE SLED12 / SLES12 Security Update : ImageMagick (SUSE-SU-2017:3388-1) | Nessus | SuSE Local Security Checks | high |
105408 | SUSE SLES11 Security Update : ImageMagick (SUSE-SU-2017:3378-1) | Nessus | SuSE Local Security Checks | high |
104515 | GLSA-201711-07 : ImageMagick: Multiple vulnerabilities | Nessus | Gentoo Local Security Checks | high |
103756 | Debian DLA-1131-1 : imagemagick security update | Nessus | Debian Local Security Checks | high |