Denial of Service Vulnerability in GraphicsMagick 1.3.26: ReadOneJNGImage JNG Data Validation Issue

Denial of Service Vulnerability in GraphicsMagick 1.3.26: ReadOneJNGImage JNG Data Validation Issue

CVE-2017-14649 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

ReadOneJNGImage in coders/png.c in GraphicsMagick version 1.3.26 does not properly validate JNG data, leading to a denial of service (assertion failure in magick/pixel_cache.c, and application crash).

Learn more about our Web Application Penetration Testing UK.