Vulnerabilities

CVE-2021-3596

by Fred · 24/02/2022

A NULL pointer dereference flaw was found in ImageMagick in versions prior to 7.0.10-31 in ReadSVGImage() in coders/svg.c. This issue is due to not checking the return value from libxml2’s xmlCreatePushParserCtxt() and uses the value directly, which leads to a crash and segmentation fault.

Date published : 2022-02-24

https://bugzilla.redhat.com/show_bug.cgi?id=1970569

https://github.com/ImageMagick/ImageMagick/issues/2624

Similar

Tags: Cybersecurity Alert