In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer over-read in the ReadMNGImage function of coders/png.c, which allows attackers to cause a denial of service or information disclosure via an image colormap.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2019-04-08T18:18:08

Updated: 2024-08-04T22:40:15.996Z

Reserved: 2019-04-08T00:00:00

Link: CVE-2019-11007

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2019-04-08T19:29:05.150

Modified: 2023-03-01T14:58:55.807

Link: CVE-2019-11007

cve-icon Redhat

No data.