CVE-2017-11446

Description

The ReadPESImage function in coders\pes.c in ImageMagick 7.0.6-1 has an infinite loop vulnerability that can cause CPU exhaustion via a crafted PES file.

References

https://www.debian.org/security/2017/dsa-4019

https://lists.debian.org/debian-lts-announce/2019/05/msg00015.html

https://github.com/ImageMagick/ImageMagick/issues/537

http://www.securityfocus.com/bid/99964

Details

Source: Mitre, NVD

Risk Information

CVSS v2

CVSS v3