VYPR
← All advisories
Unrated severityNVD Advisory· Published Apr 8, 2019· Updated Aug 4, 2024

CVE-2019-11010

CVE-2019-11010

Description

GraphicsMagick 1.4 snapshot-20190322 Q8 has a memory leak in ReadMPCImage, allowing denial-of-service via crafted MPC images.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

GraphicsMagick 1.4 snapshot-20190322 Q8 has a memory leak in ReadMPCImage, allowing denial-of-service via crafted MPC images.

Vulnerability

GraphicsMagick 1.4 snapshot-20190322 Q8 contains a memory leak in the ReadMPCImage function within coders/mpc.c. The leak occurs when processing a crafted MPC image file, specifically during the allocation of strings without proper deallocation on code paths that lead to errors [1]. The vulnerable version is the snapshot from 20190322; earlier and later versions may also be affected.

Exploitation

An attacker can trigger the memory leak by supplying a specially crafted MPC image file to the GraphicsMagick convert utility (or any function that reads MPC images). No special privileges are required; the attacker only needs to deliver the file to a user or process that invokes GraphicsMagick on it [1]. The leak can be reproduced with a command like gm convert ./crafted.mpc /dev/null.

Impact

Successful exploitation causes the application to consume increasing amounts of memory without freeing it, eventually leading to a denial-of-service condition. The leak is verified to be 2304 bytes in 9 allocations per affected operation, but repeated processing can exhaust system memory [1]. No code execution or privilege escalation is achieved.

Mitigation

As of the publication date (2019-04-08), no official fixed version of GraphicsMagick has been released. The bug was reported on the GraphicsMagick issue tracker [1]. Users should monitor for updates and apply a patch when available. As a workaround, avoid processing untrusted MPC files until a fix is released.

References
  1. GraphicsMagick / Bugs / #601 memory leak in function ReadMPCImage of coders/mpc.c

AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

3

Patches

0

No patches discovered yet.

Vulnerability mechanics

Root cause

"Memory allocated by AllocateString in ReadMPCImage is not freed on certain code paths, causing a memory leak."

Attack vector

An attacker crafts a malicious image file that triggers the `ReadMPCImage` code path. When GraphicsMagick processes this file (e.g., via `gm convert`), memory allocated by `AllocateString` at line 638 of `coders/mpc.c` is not freed, causing a memory leak. Repeated processing of such files can exhaust available memory, leading to a denial of service [ref_id=1].

Affected code

The memory leak occurs in the function `ReadMPCImage` in `coders/mpc.c` at line 638, where `AllocateString` allocates memory that is never freed on certain code paths. The call chain is `ReadMPCImage` → `ReadImage` → `ConvertImageCommand` → `MagickCommand` → `GMCommandSingle` → `GMCommand` → `main` [ref_id=1].

What the fix does

The advisory does not include a patch. The bug report identifies a memory leak in `ReadMPCImage` at `coders/mpc.c:638` where `AllocateString` allocates memory that is not freed on all return paths. To fix this, the code must ensure that the allocated string is freed before every early return or error exit in `ReadMPCImage`.

Preconditions

  • inputThe attacker must supply a crafted image file that exercises the ReadMPCImage code path.
  • configThe victim must run GraphicsMagick (e.g., `gm convert`) on the malicious file.

Generated on Jun 1, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

7

News mentions

0

No linked articles in our index yet.