Heap-based Buffer Over-read in ReadOneMNGImage in ImageMagick 7.0.7-16

Heap-based Buffer Over-read in ReadOneMNGImage in ImageMagick 7.0.7-16

CVE-2017-17879 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

In ImageMagick 7.0.7-16 Q16 x86_64 2017-12-21, there is a heap-based buffer over-read in ReadOneMNGImage in coders/png.c, related to length calculation and caused by an off-by-one error.

Learn more about our Web Application Penetration Testing UK.