SB2022070617 - Denial of service in ImageMagick

Description

This security bulletin contains information about 2 secuirty vulnerabilities.

1) Type conversion (CVE-ID: CVE-2022-32547)

The vulnerability allows a remote attacker to perform a denial of service attack.

The vulnerability exists due to a load of misaligned address for type 'double' in MagickCore/property.c. A remote attacker can trick the victim into opening a specially crafted file and perform a denial of service attack.

2) Reachable Assertion (CVE-ID: CVE-2022-2719)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a reachable assertion when a call to WriteImages is made in MagickWand/operation.c because of a NULL image list. A remote attacker can pass specially crafted file to the affected application and perform a denial of service (DoS) attack.

Remediation

Install update from vendor's website.

References

• https://bugzilla.redhat.com/show_bug.cgi?id=2091813
• https://github.com/ImageMagick/ImageMagick6/commit/dc070da861a015d3c97488fdcca6063b44d47a7b
• https://github.com/ImageMagick/ImageMagick/commit/eac8ce4d873f28bb6a46aa3a662fb196b49b95d0
• https://bugzilla.redhat.com/show_bug.cgi?id=2116537