ImageMagick SVG Segfault DoS via Trash File Generation: CVE-2023-1289 March 2023

ImageMagick SVG Segfault DoS via Trash File Generation
CVE-2023-1289 Published on March 23, 2023

A vulnerability was discovered in ImageMagick where a specially created SVG file loads itself and causes a segmentation fault. This flaw allows a remote attacker to pass a specially crafted SVG file that leads to a segmentation fault, generating many trash files in "/tmp," resulting in a denial of service. When ImageMagick crashes, it generates a lot of trash files. These trash files can be large if the SVG file contains many render actions. In a denial of service attack, if a remote attacker uploads an SVG file of size t, ImageMagick generates files of size 103*t. If an attacker uploads a 100M SVG, the server will generate about 10G.

Weakness Type

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Products Associated with CVE-2023-1289

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2023-1289 are published in these products:

Vulnerable Packages

The following package name and versions may be associated with CVE-2023-1289

Package Manager	Vulnerable Package	Versions	Fixed In
nuget	Magick.NET-Q8-x86	<= 12.3.0	13.0.0
nuget	Magick.NET-Q8-x64	<= 12.3.0	13.0.0
nuget	Magick.NET-Q8-arm64	<= 12.3.0	13.0.0
nuget	Magick.NET-Q8-OpenMP-x64	<= 12.3.0	13.0.0
nuget	Magick.NET-Q8-OpenMP-arm64	<= 12.3.0	13.0.0
nuget	Magick.NET-Q8-AnyCPU	<= 12.3.0	13.0.0
nuget	Magick.NET-Q16-HDRI-OpenMP-x64	<= 12.3.0	13.0.0
nuget	Magick.NET-Q16-x86	<= 12.3.0	13.0.0
nuget	Magick.NET-Q16-x64	<= 12.3.0	13.0.0
nuget	Magick.NET-Q16-arm64	<= 12.3.0	13.0.0
nuget	Magick.NET-Q16-OpenMP-x86	<= 12.3.0	13.0.0
nuget	Magick.NET-Q16-OpenMP-x64	<= 12.3.0	13.0.0
nuget	Magick.NET-Q16-OpenMP-arm64	<= 12.3.0	13.0.0
nuget	Magick.NET-Q16-HDRI-x86	<= 12.3.0	13.0.0
nuget	Magick.NET-Q16-HDRI-x64	<= 12.3.0	13.0.0
nuget	Magick.NET-Q16-HDRI-arm64	<= 12.3.0	13.0.0
nuget	Magick.NET-Q16-HDRI-OpenMP-arm64	<= 12.3.0	13.0.0
nuget	Magick.NET-Q16-HDRI-AnyCPU	<= 12.3.0	13.0.0
nuget	Magick.NET-Q16-AnyCPU	<= 12.3.0	13.0.0

Package Manager

Vulnerable Package

Versions

Fixed In

nuget

Magick.NET-Q8-x86

<= 12.3.0

13.0.0

nuget

Magick.NET-Q8-x64

<= 12.3.0

13.0.0

nuget

Magick.NET-Q8-arm64

<= 12.3.0

13.0.0

nuget

Magick.NET-Q8-OpenMP-x64

<= 12.3.0

13.0.0

nuget

Magick.NET-Q8-OpenMP-arm64

<= 12.3.0

13.0.0

nuget

Magick.NET-Q8-AnyCPU

<= 12.3.0

13.0.0

nuget

Magick.NET-Q16-HDRI-OpenMP-x64

<= 12.3.0

13.0.0

nuget

Magick.NET-Q16-x86

<= 12.3.0

13.0.0

nuget

Magick.NET-Q16-x64

<= 12.3.0

13.0.0

nuget

Magick.NET-Q16-arm64

<= 12.3.0

13.0.0

nuget

Magick.NET-Q16-OpenMP-x86

<= 12.3.0

13.0.0

nuget

Magick.NET-Q16-OpenMP-x64

<= 12.3.0

13.0.0

nuget

Magick.NET-Q16-OpenMP-arm64

<= 12.3.0

13.0.0

nuget

Magick.NET-Q16-HDRI-x86

<= 12.3.0

13.0.0

nuget

Magick.NET-Q16-HDRI-x64

<= 12.3.0

13.0.0

nuget

Magick.NET-Q16-HDRI-arm64

<= 12.3.0

13.0.0

nuget

Magick.NET-Q16-HDRI-OpenMP-arm64

<= 12.3.0

13.0.0

nuget

Magick.NET-Q16-HDRI-AnyCPU

<= 12.3.0

13.0.0

nuget

Magick.NET-Q16-AnyCPU

<= 12.3.0

13.0.0

Exploit Probability

EPSS

0.10%

Percentile

27.85%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

ImageMagick SVG Segfault DoS via Trash File GenerationCVE-2023-1289 Published on March 23, 2023

Weakness Type

Improper Input Validation

Products Associated with CVE-2023-1289

Vulnerable Packages

Exploit Probability

ImageMagick SVG Segfault DoS via Trash File Generation
CVE-2023-1289 Published on March 23, 2023