Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 835931 (CVE-2021-4219)

Summary: <media-gfx/imagemagick-{6.9.12.34,7.1.0.20}: denial of service via svg file opening stdin
Product: Gentoo Security Reporter: John Helmert III <ajak>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: CONFIRMED ---    
Severity: minor CC: mgorny
Priority: Normal    
Version: unspecified   
Hardware: All   
OS: Linux   
URL: https://github.com/ImageMagick/ImageMagick/issues/4626
Whiteboard: B4 [glsa]
Package list:
Runtime testing required: ---
Bug Depends on: 866431    
Bug Blocks:    

Description John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2022-03-24 16:33:09 UTC 
CVE-2021-4219:

A flaw was found in ImageMagick. The vulnerability occurs due to improper use of open functions and leads to a denial of service. This flaw allows an attacker to crash the system.
Comment 1 Michał Górny archtester Gentoo Infrastructure gentoo-dev Security 2022-03-24 18:00:19 UTC 
Oh no, now whissi will forcibly disable reading and writing SVG files forever.
Comment 2 Andreas K. Hüttel archtester gentoo-dev 2022-10-08 22:32:39 UTC 
Is stable.