ImageMagick Stack Overflow Vulnerability Due to Circular References in MVG Files

A denial-of-service vulnerability has been identified in ImageMagick versions prior to 7.1.2-12. The issue arises from the software's failure to properly check for circular references between two MVG (Multi-Value Graphics) files, which can lead to a stack overflow. This vulnerability can be exploited in any situation where an MVG file is read, causing a crash or significant slowdown of the application.

Impact

Exploitation of this vulnerability leads to a stack overflow, causing a crash or significant slowdown of the application.

Reproduction

The vulnerability can be reproduced by creating two MVG files that reference each other in a circular manner. After ensuring that the ImageMagick limits for memory, map, and disk are set appropriately, the 'mvg' file can be read using the ImageMagick command-line tool. This will trigger the circular reference check, causing a stack overflow that can be observed as a crash or error message.

Remediation

Users can upgrade to ImageMagick version 7.1.2-12 or later to address this vulnerability.