oss-sec mailing list archives
Requesting CVE for ImageMagick DoS
From: Jodie Cunningham <jodie.cunningham () gmail com>
Date: Thu, 19 Feb 2015 22:03:50 -0600
Hi, I wanted to share four DoS bugs I found via fuzzing with AFL in ImageMagick, as the maintainer has since corrected them. I'd like to request the appropriate CVE(s) to cover these DoS bugs: Date, File ID, ShortDescription, Bug report URL: 1/24/2015 3c1c3e63 HDR file DoS, CPU http://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=26929 1/25/2015 d595506c MIFF file DoS, CPU http://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=26931 1/25/2015 c8ad6aba PDB file DoS, CPU http://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=26932 1/25/2015 783d8806 VICAR file DoS, CPU http://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=26933 Regards, -Jodie Cunningham
Current thread:
- Requesting CVE for ImageMagick DoS Jodie Cunningham (Feb 19)
- Re: Requesting CVE for ImageMagick DoS Jodie Cunningham (Feb 26)