graphicsmagick: Integer overflow (CVE-2020-10938)
GraphicsMagick before 1.3.35 has an integer overflow and resultant heap-based buffer overflow in HuffmanDecodeImage in magick/compress.c.
References:
- https://nvd.nist.gov/vuln/detail/CVE-2020-10938
- https://security-tracker.debian.org/tracker/CVE-2020-10938
Patch:
http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/95abc2b694ce