The ReadOneJNGImage function in coders/png.c in ImageMagick 6.9.9-4 and 7.0.6-4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
The product dereferences a pointer that it expects to be valid but is NULL.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Imagemagick | Imagemagick | 6.9.9-4 (including) | 6.9.9-4 (including) |
| Imagemagick | Imagemagick | 7.0.6-4 (including) | 7.0.6-4 (including) |
| Imagemagick | Ubuntu | upstream | * |