ImageMagick: Infinite Loop in the MIFF decoder can lead to CPU exhaustion

Vulnerability

A missing input validation in the MIFF decoder of ImageMagick (versions prior to 14.13.1 for .NET bindings, and likely similar versions for the core library) allows a crafted MIFF file to trigger an infinite loop. This occurs because the decoder does not properly handle malformed data that causes a loop condition to never terminate, leading to CPU exhaustion. [2][3]

Exploitation

An attacker can exploit this vulnerability by providing a specially crafted MIFF file to an application using ImageMagick. No authentication or user interaction beyond opening the file is required. The attack can be performed remotely by enticing a user or automated system to process the malicious file.

Impact

Successful exploitation results in a denial of service (DoS) condition due to CPU exhaustion. The vulnerability primarily affects system availability; confidentiality and integrity are not impacted. The affected component is the ImageMagick library, and the scope is unchanged.

Mitigation

The vulnerability is fixed in Magick.NET versions 14.13.1 and later for the affected NuGet packages. For the core ImageMagick library, users should update to the latest version that includes the fix (specific fixed version not yet disclosed in available references, but likely from the same commit). As a workaround, users can implement a security policy to limit resource consumption or use a sandboxed environment. If no fix is available for the core library, consider using an alternative format or disabling the MIFF decoder. [2][3]