ImageMagick - Division by Zero in Binomial Kernel Processing
Summary
ImageMagick before 7.1.2-22 contains a division by zero vulnerability in binomial kernel processing that allows attackers to cause denial of service. An attacker can supply a large binomial kernel value causing integer overflow, resulting in division by zero and application crash. An attacker can crash the application and cause service unavailability by submitting a maliciously crafted image. This flaw in ImageMagick is rated as Low impact. An attacker can trigger a denial of service by providing a specially crafted image that, when processed, causes an integer overflow and subsequent division by zero. This issue requires user interaction, as the vulnerable ImageMagick instance must process the malicious input. Red Hat severity: Low — CVSS 3.3 (CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L). Weakness: CWE-190. Affected Red Hat products: Red Hat Enterprise Linux 6; Red Hat Enterprise Linux 7. Will not fix / out of support: Red Hat Enterprise Linux 6; Red Hat Enterprise Linux 7. Red Hat does not currently list a fixing RHSA for this CVE.
- < 7.1.2-22
Official advisory · high-confidence parse· fetched 2 hours ago·verify at source
Mitigation checklist
- To mitigate this vulnerability, avoid processing untrusted or unverified image files with ImageMagick. Implement robust input validation and sanitization for any image processing workflows that handle external content. Consider running ImageMagick within a sandboxed environment to further limit the impact of potential denial of service attacks.
Official advisory · high-confidence parse· fetched 2 hours ago·verify at source
Discussion(0)
No comments yet. Share field notes, upgrade gotchas, or questions — verify against the vendor advisory before acting on community advice.
Sign in to join the discussion.