[prev in list] [next in list] [prev in thread] [next in thread]
List: oss-security
Subject: [oss-security] Re: Requesting CVE for ImageMagick DoS
From: Jodie Cunningham <jodie.cunningham () gmail ! com>
Date: 2015-02-26 20:50:14
Message-ID: CABfY0L0q8fJjyyHKpZumOesDm72yNwebVQxa21TStFhAO+3atw () mail ! gmail ! com
[Download RAW message or body]
Adding cve-assign to cc
-Jodie
Hi,
I wanted to share four DoS bugs I found via fuzzing with AFL in
ImageMagick, as the maintainer has since corrected them. I'd like to
request the appropriate CVE(s) to cover these DoS bugs:
Date, File ID, ShortDescription, Bug report URL:
1/24/2015 3c1c3e63 HDR file DoS, CPU
http://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=26929
1/25/2015 d595506c MIFF file DoS, CPU
http://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=26931
1/25/2015 c8ad6aba PDB file DoS, CPU
http://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=26932
1/25/2015 783d8806 VICAR file DoS, CPU
http://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=26933
Regards,
-Jodie Cunningham
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic