oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Requesting CVE for ImageMagick DoS

From: Jodie Cunningham <jodie.cunningham () gmail com>
Date: Thu, 19 Feb 2015 22:03:50 -0600
Hi,

I wanted to share four DoS bugs I found via fuzzing with AFL in
ImageMagick, as the maintainer has since corrected them. I'd like to
request the appropriate CVE(s) to cover these DoS bugs:

Date, File ID, ShortDescription, Bug report URL:
1/24/2015 3c1c3e63 HDR file DoS, CPU
 http://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=26929

1/25/2015 d595506c MIFF file DoS, CPU
 http://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=26931

1/25/2015 c8ad6aba PDB file DoS, CPU
http://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=26932

1/25/2015 783d8806 VICAR file DoS, CPU
http://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=26933


Regards,
-Jodie Cunningham
Previous By Date Next
Previous By Thread Next

Current thread: