CVE-2021-40211: 
ImageMagick vulnerability analysis and mitigation

CVE-2021-40211 is a vulnerability discovered in ImageMagick version 7.1.0-4, specifically affecting the ReadEnhMetaFile function in coders/emf.c. The vulnerability was disclosed on August 21, 2021, and affects the ImageMagick image display and manipulation tool (GitHub Issue).

The vulnerability is a division by zero error that occurs in the ReadEnhMetaFile function of coders/emf.c. The issue arises when the pBits variable, which can be controlled by an attacker, is used as a divisor. The vulnerability has been assigned a CVSS v3.1 base score of 7.5 (High) with the vector string CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H (NVD).

The vulnerability can lead to a denial of service (DoS) condition when exploited. The impact is primarily on availability, with no direct effect on confidentiality or integrity of the system (Red Hat Security).

Multiple vendors have released patches to address this vulnerability. Red Hat has released security updates for affected versions in RHEL 7 systems. Ubuntu has also provided fixes across multiple releases including 23.04, 22.04 LTS, 20.04 LTS, and earlier versions (Ubuntu Security, Red Hat Advisory).