Описание
Security update for ImageMagick
This update for ImageMagick fixes the following security issues:
- CVE-2017-11532: Prevent a memory leak vulnerability in the WriteMPCImage() function in coders/mpc.c via a crafted file allowing for DoS (bsc#1050129)
- CVE-2018-16750: Prevent memory leak in the formatIPTCfromBuffer function (bsc#1108283)
- CVE-2018-16749: Added missing NULL check in ReadOneJNGImage that allowed an attacker to cause a denial of service (WriteBlob assertion failure and application exit) via a crafted file (bsc#1108282)
- CVE-2018-16642: The function InsertRow allowed remote attackers to cause a denial of service via a crafted image file due to an out-of-bounds write (bsc#1107616)
- CVE-2018-16640: Prevent memory leak in the function ReadOneJNGImage (bsc#1107619)
- CVE-2018-16643: The functions ReadDCMImage, ReadPWPImage, ReadCALSImage, and ReadPICTImage did check the return value of the fputc function, which allowed remote attackers to cause a denial of service via a crafted image file (bsc#1107612)
- CVE-2018-16644: Added missing check for length in the functions ReadDCMImage and ReadPICTImage, which allowed remote attackers to cause a denial of service via a crafted image (bsc#1107609)
- CVE-2018-16645: Prevent excessive memory allocation issue in the functions ReadBMPImage and ReadDIBImage, which allowed remote attackers to cause a denial of service via a crafted image file (bsc#1107604)
- CVE-2018-16413: Prevent heap-based buffer over-read in the PushShortPixel function leading to DoS (bsc#1106989)
This update also relaxes the restrictions of use of Postscript like formats to 'write' only. (bsc#1105592)
Список пакетов
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server for SAP Applications 12 SP3
SUSE Linux Enterprise Software Development Kit 12 SP3
SUSE Linux Enterprise Workstation Extension 12 SP3
Ссылки
- Link for SUSE-SU-2018:3095-1
- E-Mail link for SUSE-SU-2018:3095-1
- SUSE Security Ratings
- SUSE Bug 1050129
- SUSE Bug 1105592
- SUSE Bug 1106989
- SUSE Bug 1107604
- SUSE Bug 1107609
- SUSE Bug 1107612
- SUSE Bug 1107616
- SUSE Bug 1107619
- SUSE Bug 1108282
- SUSE Bug 1108283
- SUSE CVE CVE-2017-11532 page
- SUSE CVE CVE-2018-16413 page
- SUSE CVE CVE-2018-16640 page
- SUSE CVE CVE-2018-16642 page
- SUSE CVE CVE-2018-16643 page
- SUSE CVE CVE-2018-16644 page
- SUSE CVE CVE-2018-16645 page
Описание
When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Memory Leak in the WriteMPCImage() function in coders/mpc.c.
Затронутые продукты
Ссылки
- CVE-2017-11532
- SUSE Bug 1050129
- SUSE Bug 1050623
Описание
ImageMagick 7.0.8-11 Q16 has a heap-based buffer over-read in the MagickCore/quantum-private.h PushShortPixel function when called from the coders/psd.c ParseImageResourceBlocks function.
Затронутые продукты
Ссылки
- CVE-2018-16413
- SUSE Bug 1106989
- SUSE Bug 1106996
Описание
ImageMagick 7.0.8-5 has a memory leak vulnerability in the function ReadOneJNGImage in coders/png.c.
Затронутые продукты
Ссылки
- CVE-2018-16640
- SUSE Bug 1107619
Описание
The function InsertRow in coders/cut.c in ImageMagick 7.0.7-37 allows remote attackers to cause a denial of service via a crafted image file due to an out-of-bounds write.
Затронутые продукты
Ссылки
- CVE-2018-16642
- SUSE Bug 1107616
Описание
The functions ReadDCMImage in coders/dcm.c, ReadPWPImage in coders/pwp.c, ReadCALSImage in coders/cals.c, and ReadPICTImage in coders/pict.c in ImageMagick 7.0.8-4 do not check the return value of the fputc function, which allows remote attackers to cause a denial of service via a crafted image file.
Затронутые продукты
Ссылки
- CVE-2018-16643
- SUSE Bug 1107612
Описание
There is a missing check for length in the functions ReadDCMImage of coders/dcm.c and ReadPICTImage of coders/pict.c in ImageMagick 7.0.8-11, which allows remote attackers to cause a denial of service via a crafted image.
Затронутые продукты
Ссылки
- CVE-2018-16644
- SUSE Bug 1107609
- SUSE Bug 1107612
- SUSE Bug 1117463
Описание
There is an excessive memory allocation issue in the functions ReadBMPImage of coders/bmp.c and ReadDIBImage of coders/dib.c in ImageMagick 7.0.8-11, which allows remote attackers to cause a denial of service via a crafted image file.
Затронутые продукты
Ссылки
- CVE-2018-16645
- SUSE Bug 1107604
Описание
In ImageMagick 7.0.7-29 and earlier, a missing NULL check in ReadOneJNGImage in coders/png.c allows an attacker to cause a denial of service (WriteBlob assertion failure and application exit) via a crafted file.
Затронутые продукты
Ссылки
- CVE-2018-16749
- SUSE Bug 1108282
Описание
In ImageMagick 7.0.7-29 and earlier, a memory leak in the formatIPTCfromBuffer function in coders/meta.c was found.
Затронутые продукты
Ссылки
- CVE-2018-16750
- SUSE Bug 1108283