Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.Test your applications
- Snyk ID SNYK-COCOAPODS-IMAGEMAGICK-471115
- published 2 Oct 2019
- disclosed 19 Jul 2017
- credit Unknown
How to fix?
There is no fixed version for
ImageMagick is a pod that allows you to convert, edit and compose Images.
Affected versions of this package are vulnerable to Out-of-Bounds. ImageMagick is vulnerable to heap-based buffer over-read. The vulnerability is possible because
WriteCIPImage() function in
coders/cip.c does not prevent processing of malicious file in covert.