Bug 1187216 - (CVE-2021-3596) VUL-0: CVE-2021-3596: ImageMagick: NULL pointer dereference in ReadSVGImage() in coders/svg.c
(CVE-2021-3596)
VUL-0: CVE-2021-3596: ImageMagick: NULL pointer dereference in ReadSVGImage()...
Status: RESOLVED FIXED
Classification: Novell Products
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents
unspecified
Other Other
: P5 - None : Normal
: ---
Assigned To: Petr Gajdos
Security Team bot
https://smash.suse.de/issue/301751/
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2021-06-11 08:42 UTC by Gianluca Gabrielli
Modified: 2021-06-11 08:43 UTC (History)
1 user (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Gianluca Gabrielli 2021-06-11 08:42:28 UTC
A NULL pointer dereference was found in ImageMagick in ReadSVGImage() in coders/svg.c because it does not check the return value from libxml2's xmlCreatePushParserCtxt() and use the value directly which can lead to crash and segmentation fault. This flaw affects ImageMagick versions prior to 7.0.10.31.

Reference:
https://github.com/ImageMagick/ImageMagick/issues/2624

Upstream patch:
https://github.com/ImageMagick/ImageMagick/commit/43dfb1894761c4929d5d5c98dc80ba4e59a0d114

References:
https://bugzilla.redhat.com/show_bug.cgi?id=1970569
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3596
Comment 1 Gianluca Gabrielli 2021-06-11 08:43:01 UTC
None of our packages is affected.