Описание
Recommended update for ImageMagick
This update for ImageMagick provides the following fixes:
- Fix segmentation fault when wrong parameter supplied to conjure command (bsc#1027480).
- Improve CVE-2016-7518 patch to fix sun coder (bsc#1028079 comment 5).
Список пакетов
SUSE Linux Enterprise Server 11 SP4
libMagickCore1-6.4.3.6-7.70.1
libMagickCore1-32bit-6.4.3.6-7.70.1
SUSE Linux Enterprise Server for SAP Applications 11 SP4
libMagickCore1-6.4.3.6-7.70.1
libMagickCore1-32bit-6.4.3.6-7.70.1
SUSE Linux Enterprise Software Development Kit 11 SP4
ImageMagick-6.4.3.6-7.70.1
ImageMagick-devel-6.4.3.6-7.70.1
libMagick++-devel-6.4.3.6-7.70.1
libMagick++1-6.4.3.6-7.70.1
libMagickWand1-6.4.3.6-7.70.1
libMagickWand1-32bit-6.4.3.6-7.70.1
perl-PerlMagick-6.4.3.6-7.70.1
Ссылки
- Link for SUSE-RU-2017:0843-1
- E-Mail link for SUSE-RU-2017:0843-1
- SUSE Security Ratings
- SUSE Bug 1027480
- SUSE Bug 1028079
- SUSE CVE CVE-2016-7518 page
Описание
The ReadSUNImage function in coders/sun.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted SUN file.
Затронутые продукты
SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.70.1
SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.70.1
SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.70.1
SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.70.1
Ссылки
- CVE-2016-7518
- SUSE Bug 1000694
- SUSE Bug 1028079