Описание
Security update for ImageMagick
This update for ImageMagick fixes the following issues:
- CVE-2017-11527: Fixed a denial of service inReadDPXImage() (bsc#1047054).
Список пакетов
SUSE Linux Enterprise Server 12 SP5
ImageMagick-config-6-SUSE-6.8.8.1-71.144.8
ImageMagick-config-6-upstream-6.8.8.1-71.144.8
libMagickCore-6_Q16-1-6.8.8.1-71.144.8
libMagickWand-6_Q16-1-6.8.8.1-71.144.8
SUSE Linux Enterprise Server for SAP Applications 12 SP5
ImageMagick-config-6-SUSE-6.8.8.1-71.144.8
ImageMagick-config-6-upstream-6.8.8.1-71.144.8
libMagickCore-6_Q16-1-6.8.8.1-71.144.8
libMagickWand-6_Q16-1-6.8.8.1-71.144.8
SUSE Linux Enterprise Software Development Kit 12 SP5
ImageMagick-6.8.8.1-71.144.8
ImageMagick-config-6-SUSE-6.8.8.1-71.144.8
ImageMagick-config-6-upstream-6.8.8.1-71.144.8
ImageMagick-devel-6.8.8.1-71.144.8
libMagick++-6_Q16-3-6.8.8.1-71.144.8
libMagick++-devel-6.8.8.1-71.144.8
perl-PerlMagick-6.8.8.1-71.144.8
SUSE Linux Enterprise Workstation Extension 12 SP5
ImageMagick-6.8.8.1-71.144.8
libMagick++-6_Q16-3-6.8.8.1-71.144.8
libMagickCore-6_Q16-1-32bit-6.8.8.1-71.144.8
Ссылки
- Link for SUSE-SU-2020:2750-1
- E-Mail link for SUSE-SU-2020:2750-1
- SUSE Security Ratings
- SUSE Bug 1047054
- SUSE CVE CVE-2017-11527 page
Описание
The ReadDPXImage function in coders/dpx.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial of service (memory consumption) via a crafted file.
Затронутые продукты
SUSE Linux Enterprise Server 12 SP5:ImageMagick-config-6-SUSE-6.8.8.1-71.144.8
SUSE Linux Enterprise Server 12 SP5:ImageMagick-config-6-upstream-6.8.8.1-71.144.8
SUSE Linux Enterprise Server 12 SP5:libMagickCore-6_Q16-1-6.8.8.1-71.144.8
SUSE Linux Enterprise Server 12 SP5:libMagickWand-6_Q16-1-6.8.8.1-71.144.8
Ссылки
- CVE-2017-11527
- SUSE Bug 1047054
- SUSE Bug 1050116