Bug 1056988 – VUL-0: CVE-2017-12875: ImageMagick: Resource exhaustion in WritePixelCachePixels function in coders/xcf.c

Bug 1056988 - (CVE-2017-12875) VUL-0: CVE-2017-12875: ImageMagick: Resource exhaustion in WritePixelCachePixels function in coders/xcf.c

(CVE-2017-12875)
Summary:	VUL-0: CVE-2017-12875: ImageMagick: Resource exhaustion in WritePixelCachePix...

Status:	RESOLVED INVALID

Classification:	Novell Products
Product:	SUSE Security Incidents
Classification:	Novell Products
Component:	Incidents
Version:	unspecified
Hardware:	Other openSUSE Factory

Priority:	P3 - Medium Severity: Minor
Target Milestone:	---
Assigned To:	Petr Gajdos
QA Contact:	Security Team bot

URL:	https://smash.suse.de/issue/191382/
Whiteboard:
Keywords:

Depends on:
Blocks:
	Show dependency tree / graph

Create test case

Clone This Bug

Reported:	2017-09-04 05:40 UTC by Marcus Meissner
Modified:	2017-09-29 09:16 UTC (History)
CC List:	1 user (show)

See Also:
Found By:	Security Response Team
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
cpu-poc2 (220 bytes, application/octet-stream) 2017-09-04 05:47 UTC, Marcus Meissner	Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Marcus Meissner 2017-09-04 05:40:40 UTC

https://github.com/ImageMagick/ImageMagick/issues/659

endless loop / cpu exhaustion in WritePixelCachePixels #659

Comment 1 Marcus Meissner 2017-09-04 05:40:56 UTC

https://github.com/ImageMagick/ImageMagick/commit/6f95e543c80319721e22d623bb23712cd29afa9e

Comment 2 Marcus Meissner 2017-09-04 05:47:08 UTC

Created attachment 739252 [details]
cpu-poc2

QA REPRODUCER:

convert cpu-poc2 /dev/null

should not endless loop/exhaust memory.


I cannot get it to trigger an endless loop anywhere though.

Comment 3 Marcus Meissner 2017-09-29 09:16:56 UTC

nbot reproducable, could be closed.