ImageMagick has Division-by-Zero in YUV sampling factor validation, which leads to crash

Root

Cause

A logic error in YUV sampling factor validation can allow an invalid sampling factor to bypass the intended checks, triggering a division-by-zero at line 210 of coders/yuv.c during image processing. This flaw is present in ImageMagick versions prior to 7.1.2-15 and 6.9.13-40 [2][4].

Attack

Vector & Exploitation

The vulnerability is exploitable when ImageMagick attempts to load a specially crafted image that supplies an invalid YUV sampling factor. No authentication is required; the attack surface is the image loading functionality accessible via the command-line tool or any application using the ImageMagick library to process untrusted image files. A crafted image file is sufficient to trigger the crash [4].

Impact

Successful exploitation leads to a reliable denial-of-service condition by crashing the ImageMagick process. The division-by-zero produces a fatal signal, terminating the process and preventing legitimate image processing tasks. This can be particularly impactful for services and applications that rely on ImageMagick for automated image handling, such as web applications, graphic design tools, and scientific image pipelines [1][2].

Mitigation

ImageMagick has addressed this vulnerability in versions 7.1.2-15 and 6.9.13-40. Users should upgrade to these patched versions or apply the available patch to their current installation. No workarounds are documented; however, limiting exposure by restricting the handling of untrusted image files can reduce risk until an upgrade is possible [2][3].