Null Pointer Dereference Vulnerability in ImageMagick's ReadMATImage Function

Null Pointer Dereference Vulnerability in ImageMagick's ReadMATImage Function

CVE-2017-13658 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

In ImageMagick before 6.9.9-3 and 7.x before 7.0.6-3, there is a missing NULL check in the ReadMATImage function in coders/mat.c, leading to a denial of service (assertion failure and application exit) in the DestroyImageInfo function in MagickCore/image.c.

Learn more about our Web Application Penetration Testing UK.