{
  "threat_severity" : "Low",
  "public_date" : "2019-09-23T00:00:00Z",
  "bugzilla" : {
    "description" : "ImageMagick: memory leak in Huffman2DEncodeImage in coders/ps2.c",
    "id" : "1801673",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=1801673"
  },
  "cvss3" : {
    "cvss3_base_score" : "5.3",
    "cvss3_scoring_vector" : "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
    "status" : "verified"
  },
  "cwe" : "CWE-772",
  "details" : [ "ImageMagick 7.0.8-40 has a memory leak in Huffman2DEncodeImage in coders/ps2.c.", "A memory leak was discovered in ImageMagick in function Huffman2DEncodeImage in ps2.c. An application that uses ImageMagick to parse PS2 images may be vulnerable to this flaw and crash due to some memory that is never freed." ],
  "affected_release" : [ {
    "product_name" : "Red Hat Enterprise Linux 7",
    "release_date" : "2020-03-31T00:00:00Z",
    "advisory" : "RHSA-2020:1180",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7",
    "package" : "autotrace-0:0.31.1-38.el7"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7",
    "release_date" : "2020-03-31T00:00:00Z",
    "advisory" : "RHSA-2020:1180",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7",
    "package" : "emacs-1:24.3-23.el7"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7",
    "release_date" : "2020-03-31T00:00:00Z",
    "advisory" : "RHSA-2020:1180",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7",
    "package" : "ImageMagick-0:6.9.10.68-3.el7"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7",
    "release_date" : "2020-03-31T00:00:00Z",
    "advisory" : "RHSA-2020:1180",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7",
    "package" : "inkscape-0:0.92.2-3.el7"
  } ],
  "package_state" : [ {
    "product_name" : "Red Hat Enterprise Linux 5",
    "fix_state" : "Out of support scope",
    "package_name" : "ImageMagick",
    "cpe" : "cpe:/o:redhat:enterprise_linux:5"
  }, {
    "product_name" : "Red Hat Enterprise Linux 6",
    "fix_state" : "Out of support scope",
    "package_name" : "ImageMagick",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2019-16711\nhttps://nvd.nist.gov/vuln/detail/CVE-2019-16711" ],
  "name" : "CVE-2019-16711",
  "csaw" : false
}