Fortinet Discovers ImageMagick libxml2 Denial Of Service Vulnerability
Fortinet's FortiGuard Labs has discovered a Denial Of Service Vulnerability in ImageMagick.
ImageMagick is a free and open-source software suite for displaying, converting, and editing raster image and vector image files. It can read and write over 200 image file formats.
ImageMagick is susceptible to a Denial Of Service vulnerability. Denial of service on the server side running vulnerable ImageMagick can be triggered upon successful exploitation of the vulnerability.
SolutionsFortiGuard Labs released the following FortiGate IPS signature which covers this specific vulnerability:
Released Oct 29, 2019
Users should apply patch provided by ImageMagick
Fortinet reported the vulnerability to ImageMagick on 21 October, 2019.
ImageMagick confirmed the vulnerability on 23 October, 2019.
ImageMagick released patch for the vulnerability on 27 October, 2019.
This vulnerability was discovered by Nguyen Thanh Nguyen of Fortinet's FortiGuard Labs.