New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
memory leak in ReadPSDChannel #462
Comments
|
@bestshow |
|
@asarubbo Thanks for your advice. |
|
@bestshow Could you place the report inside a code block next time? You keep referencing unrelated issues because of the |
|
Including how much memory is leaked is very helpful information in determining if the issue poses real risk. |
|
@dlemstra OK,I will do it next time. |
|
This was assigned CVE-2017-9440. |
on ImageMagick 7.0.5-5
The ReadPSDChannel function in psd.c:1341 allows attackers to cause a denial of service (memory leak) via a crafted file.
testcase:https://github.com/bestshow/p0cs/blob/master/memory-leak-in-ReadPSDImage-24.psd
Credit:ADLab of Venustech
The text was updated successfully, but these errors were encountered: