CVE-2015-8894 - Double Free

Severity

43%

Complexity

86%

Confidentiality

48%

Double free vulnerability in coders/tga.c in ImageMagick 7.0.0 and later allows remote attackers to cause a denial of service (application crash) via a crafted tga file.

Double free vulnerability in coders/tga.c in ImageMagick 7.0.0 and later allows remote attackers to cause a denial of service (application crash) via a crafted tga file.

CVSS 3.0 Base Score 5.5. CVSS Attack Vector: local. CVSS Attack Complexity: low. CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H).

CVSS 2.0 Base Score 4.3. CVSS Attack Vector: network. CVSS Attack Complexity: medium. CVSS Vector: (AV:N/AC:M/Au:N/C:N/I:N/A:P).

Demo Examples

Double Free

CWE-415

Double Free

CWE-415

While contrived, this code should be exploitable on Linux distributions which do not ship with heap-chunk check summing turned on.


               
}
free(buf1R2);

Overview

Type

ImageMagick

First reported 7 years ago

2017-03-15 19:59:00

Last updated 7 years ago

2017-03-17 12:22:00

Affected Software

ImageMagick 7.0.1-0

7.0.1-0

ImageMagick 7.0.1-1

7.0.1-1

ImageMagick 7.0.1-2

7.0.1-2

ImageMagick 7.0.1-3

7.0.1-3

ImageMagick 7.0.1-4

7.0.1-4

ImageMagick 7.0.1-5

7.0.1-5

ImageMagick 7.0.1-6

7.0.1-6

ImageMagick 7.0.1-7

7.0.1-7

ImageMagick 7.0.1-8

7.0.1-8

ImageMagick 7.0.1-9

7.0.1-9

ImageMagick 7.0.1-10

7.0.1-10

ImageMagick 7.0.2-0

7.0.2-0

ImageMagick 7.0.2-1

7.0.2-1

ImageMagick 7.0.2-2

7.0.2-2

ImageMagick 7.0.2-3

7.0.2-3

ImageMagick 7.0.2-4

7.0.2-4

ImageMagick 7.0.2-5

7.0.2-5

ImageMagick 7.0.2-6

7.0.2-6

ImageMagick 7.0.2-7

7.0.2-7

ImageMagick 7.0.2-8

7.0.2-8

ImageMagick 7.0.2-9

7.0.2-9

ImageMagick 7.0.2-10

7.0.2-10

ImageMagick 7.0.3-0

7.0.3-0

ImageMagick 7.0.3-1

7.0.3-1

ImageMagick 7.0.3-2

7.0.3-2

ImageMagick 7.0.3-3

7.0.3-3

ImageMagick 7.0.3-4

7.0.3-4

ImageMagick 7.0.3-5

7.0.3-5

ImageMagick 7.0.3-6

7.0.3-6

ImageMagick 7.0.3-7

7.0.3-7

ImageMagick 7.0.3-8

7.0.3-8

ImageMagick 7.0.3-9

7.0.3-9

ImageMagick 7.0.3-10

7.0.3-10

ImageMagick 7.0.4-0

7.0.4-0

ImageMagick 7.0.4-1

7.0.4-1

ImageMagick 7.0.4-2

7.0.4-2

ImageMagick 7.0.4-3

7.0.4-3

ImageMagick 7.0.4-4

7.0.4-4

ImageMagick 7.0.4-5

7.0.4-5

ImageMagick 7.0.4-6

7.0.4-6

ImageMagick 7.0.4-7

7.0.4-7

ImageMagick 7.0.4-8

7.0.4-8

ImageMagick 7.0.4-9

7.0.4-9

ImageMagick 7.0.4-10

7.0.4-10

ImageMagick 7.0.5-0

7.0.5-0

References

[oss-security] 20160602 Re: ImageMagick CVEs

Mailing List, Patch, Third Party Advisory

https://bugs.launchpad.net/ubuntu/+source/imagemagick/+bug/1490362

Issue Tracking, Patch, Third Party Advisory

https://github.com/ImageMagick/ImageMagick/commit/4f68e9661518463fca523c9726bb5d940a2aa6d8

Issue Tracking, Patch, Third Party Advisory

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.