Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2019:13995-1

Опубликовано: 29 мар. 2019
Источник: suse-cvrf

Описание

Security update for GraphicsMagick

This update for GraphicsMagick fixes the following issues:

Security issues fixed:

  • CVE-2019-7175: Fixed multiple memory leaks in DecodeImage function (bsc#1128649).
  • CVE-2018-20467: Fixed infinite loop in coders/bmp.c (bsc#1120381)
  • CVE-2019-7398: Fixed a memory leak in the function WriteDIBImage (bsc#1124365).
  • CVE-2019-7397: Fixed a memory leak in the function WritePDFImage (bsc#1124366).

Список пакетов

SUSE Linux Enterprise Software Development Kit 11 SP4
GraphicsMagick-1.2.5-78.85.1
libGraphicsMagick2-1.2.5-78.85.1
perl-GraphicsMagick-1.2.5-78.85.1
SUSE Studio Onsite 1.3
GraphicsMagick-1.2.5-78.85.1
libGraphicsMagick2-1.2.5-78.85.1

Ссылки

Описание

In coders/bmp.c in ImageMagick before 7.0.8-16, an input file can result in an infinite loop and hang, with high CPU and memory consumption. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted file.

Затронутые продукты
SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.85.1
SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.85.1
SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.85.1
SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.85.1
Ссылки

Описание

In ImageMagick before 7.0.8-25, some memory leaks exist in DecodeImage in coders/pcd.c.

Затронутые продукты
SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.85.1
SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.85.1
SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.85.1
SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.85.1
Ссылки

Описание

In ImageMagick before 7.0.8-25 and GraphicsMagick through 1.3.31, several memory leaks exist in WritePDFImage in coders/pdf.c.

Затронутые продукты
SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.85.1
SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.85.1
SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.85.1
SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.85.1
Ссылки

Описание

In ImageMagick before 7.0.8-25, a memory leak exists in WriteDIBImage in coders/dib.c.

Затронутые продукты
SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.85.1
SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.85.1
SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.85.1
SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.85.1
Ссылки