heap-buffer-overflow vulnerability in latest Imagemagick including 7.1.1-4 & 7.1.1-6 (Beta)

Moderate

urban-warrior published GHSA-35q2-86c7-9247

Apr 2, 2023

Package

No package listed

Affected versions

7.1.1-4,7.1.1-6 (Beta)

Patched versions

7.1.1-6

Description

Summary

While fuzzing ImageMagick using AFL - We came across a heap overflow vulnerability which is vulnerable in 7.1.1-4,5&6.

MagickCore/quantum-import.c:3544

PoC

git clone https://github.com/ImageMagick/ImageMagick.git
./configure CC=afl-clang-fast CXX=afl-clang-fast++ --disable-shared
AFL_USE_ASAN=1 make -j$(nproc)
run ./magick convert heapoverflow-poc /dev/null or ./magick heapoverflow-poc /dev/null
The program will crash like see below :