Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2021:0605-1

Опубликовано: 25 фев. 2021
Источник: suse-cvrf

Описание

Security update for ImageMagick

This update for ImageMagick fixes the following issues:

  • CVE-2021-20241 [bsc#1182335]: Division by zero in WriteJP2Image() in coders/jp2.c
  • CVE-2021-20243 [bsc#1182336]: Division by zero in GetResizeFilterWeight in MagickCore/resize.c
  • CVE-2021-20244 [bsc#1182325]: Division by zero in ImplodeImage in MagickCore/visual-effects.c
  • CVE-2021-20246 [bsc#1182337]: Division by zero in ScaleResampleFilter in MagickCore/resample.c

Список пакетов

SUSE Linux Enterprise Module for Desktop Applications 15 SP2
ImageMagick-7.0.7.34-10.12.1
ImageMagick-config-7-SUSE-7.0.7.34-10.12.1
ImageMagick-config-7-upstream-7.0.7.34-10.12.1
ImageMagick-devel-7.0.7.34-10.12.1
libMagick++-7_Q16HDRI4-7.0.7.34-10.12.1
libMagick++-devel-7.0.7.34-10.12.1
libMagickCore-7_Q16HDRI6-7.0.7.34-10.12.1
libMagickWand-7_Q16HDRI6-7.0.7.34-10.12.1
SUSE Linux Enterprise Module for Development Tools 15 SP2
perl-PerlMagick-7.0.7.34-10.12.1

Ссылки

Описание

A flaw was found in ImageMagick in coders/jp2.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system availability.

Затронутые продукты
SUSE Linux Enterprise Module for Desktop Applications 15 SP2:ImageMagick-7.0.7.34-10.12.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP2:ImageMagick-config-7-SUSE-7.0.7.34-10.12.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP2:ImageMagick-config-7-upstream-7.0.7.34-10.12.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP2:ImageMagick-devel-7.0.7.34-10.12.1
Ссылки

Описание

A flaw was found in ImageMagick in MagickCore/resize.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system availability.

Затронутые продукты
SUSE Linux Enterprise Module for Desktop Applications 15 SP2:ImageMagick-7.0.7.34-10.12.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP2:ImageMagick-config-7-SUSE-7.0.7.34-10.12.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP2:ImageMagick-config-7-upstream-7.0.7.34-10.12.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP2:ImageMagick-devel-7.0.7.34-10.12.1
Ссылки

Описание

A flaw was found in ImageMagick in MagickCore/visual-effects.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system availability.

Затронутые продукты
SUSE Linux Enterprise Module for Desktop Applications 15 SP2:ImageMagick-7.0.7.34-10.12.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP2:ImageMagick-config-7-SUSE-7.0.7.34-10.12.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP2:ImageMagick-config-7-upstream-7.0.7.34-10.12.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP2:ImageMagick-devel-7.0.7.34-10.12.1
Ссылки

Описание

A flaw was found in ImageMagick in MagickCore/resample.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system availability.

Затронутые продукты
SUSE Linux Enterprise Module for Desktop Applications 15 SP2:ImageMagick-7.0.7.34-10.12.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP2:ImageMagick-config-7-SUSE-7.0.7.34-10.12.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP2:ImageMagick-config-7-upstream-7.0.7.34-10.12.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP2:ImageMagick-devel-7.0.7.34-10.12.1
Ссылки