SUSE-SU-2022:1885-1

Опубликовано: 31 мая 2022

Источник: suse-cvrf

Описание

Security update for ImageMagick

This update for ImageMagick fixes the following issues:

CVE-2022-1270: Fixed a memory corruption issue when parsing MIFF files (bsc#1198351).
CVE-2022-28463: Fixed buffer overflow in coders/cin.c (bsc#1199350).

Список пакетов

HPE Helion OpenStack 8

ImageMagick-config-6-SUSE-6.8.8.1-71.172.1

ImageMagick-config-6-upstream-6.8.8.1-71.172.1

libMagickCore-6_Q16-1-6.8.8.1-71.172.1

libMagickWand-6_Q16-1-6.8.8.1-71.172.1

SUSE Linux Enterprise Server 12 SP2-BCL

ImageMagick-config-6-SUSE-6.8.8.1-71.172.1

ImageMagick-config-6-upstream-6.8.8.1-71.172.1

libMagickCore-6_Q16-1-6.8.8.1-71.172.1

libMagickWand-6_Q16-1-6.8.8.1-71.172.1

SUSE Linux Enterprise Server 12 SP3-BCL

ImageMagick-config-6-SUSE-6.8.8.1-71.172.1

ImageMagick-config-6-upstream-6.8.8.1-71.172.1

libMagickCore-6_Q16-1-6.8.8.1-71.172.1

libMagickWand-6_Q16-1-6.8.8.1-71.172.1

SUSE Linux Enterprise Server 12 SP3-LTSS

ImageMagick-config-6-SUSE-6.8.8.1-71.172.1

ImageMagick-config-6-upstream-6.8.8.1-71.172.1

libMagickCore-6_Q16-1-6.8.8.1-71.172.1

libMagickWand-6_Q16-1-6.8.8.1-71.172.1

SUSE Linux Enterprise Server 12 SP4-LTSS

ImageMagick-config-6-SUSE-6.8.8.1-71.172.1

ImageMagick-config-6-upstream-6.8.8.1-71.172.1

libMagickCore-6_Q16-1-6.8.8.1-71.172.1

libMagickWand-6_Q16-1-6.8.8.1-71.172.1

SUSE Linux Enterprise Server 12 SP5

ImageMagick-config-6-SUSE-6.8.8.1-71.172.1

ImageMagick-config-6-upstream-6.8.8.1-71.172.1

libMagickCore-6_Q16-1-6.8.8.1-71.172.1

libMagickWand-6_Q16-1-6.8.8.1-71.172.1

SUSE Linux Enterprise Server for SAP Applications 12 SP3

ImageMagick-config-6-SUSE-6.8.8.1-71.172.1

ImageMagick-config-6-upstream-6.8.8.1-71.172.1

libMagickCore-6_Q16-1-6.8.8.1-71.172.1

libMagickWand-6_Q16-1-6.8.8.1-71.172.1

SUSE Linux Enterprise Server for SAP Applications 12 SP4

ImageMagick-config-6-SUSE-6.8.8.1-71.172.1

ImageMagick-config-6-upstream-6.8.8.1-71.172.1

libMagickCore-6_Q16-1-6.8.8.1-71.172.1

libMagickWand-6_Q16-1-6.8.8.1-71.172.1

SUSE Linux Enterprise Server for SAP Applications 12 SP5

ImageMagick-config-6-SUSE-6.8.8.1-71.172.1

ImageMagick-config-6-upstream-6.8.8.1-71.172.1

libMagickCore-6_Q16-1-6.8.8.1-71.172.1

libMagickWand-6_Q16-1-6.8.8.1-71.172.1

SUSE Linux Enterprise Software Development Kit 12 SP5

ImageMagick-6.8.8.1-71.172.1

ImageMagick-config-6-SUSE-6.8.8.1-71.172.1

ImageMagick-config-6-upstream-6.8.8.1-71.172.1

ImageMagick-devel-6.8.8.1-71.172.1

libMagick++-6_Q16-3-6.8.8.1-71.172.1

libMagick++-devel-6.8.8.1-71.172.1

perl-PerlMagick-6.8.8.1-71.172.1

SUSE Linux Enterprise Workstation Extension 12 SP5

ImageMagick-6.8.8.1-71.172.1

libMagick++-6_Q16-3-6.8.8.1-71.172.1

libMagickCore-6_Q16-1-32bit-6.8.8.1-71.172.1

SUSE OpenStack Cloud 8

ImageMagick-config-6-SUSE-6.8.8.1-71.172.1

ImageMagick-config-6-upstream-6.8.8.1-71.172.1

libMagickCore-6_Q16-1-6.8.8.1-71.172.1

libMagickWand-6_Q16-1-6.8.8.1-71.172.1

SUSE OpenStack Cloud 9

ImageMagick-config-6-SUSE-6.8.8.1-71.172.1

ImageMagick-config-6-upstream-6.8.8.1-71.172.1

libMagickCore-6_Q16-1-6.8.8.1-71.172.1

libMagickWand-6_Q16-1-6.8.8.1-71.172.1

SUSE OpenStack Cloud Crowbar 8

ImageMagick-config-6-SUSE-6.8.8.1-71.172.1

ImageMagick-config-6-upstream-6.8.8.1-71.172.1

libMagickCore-6_Q16-1-6.8.8.1-71.172.1

libMagickWand-6_Q16-1-6.8.8.1-71.172.1

SUSE OpenStack Cloud Crowbar 9

ImageMagick-config-6-SUSE-6.8.8.1-71.172.1

ImageMagick-config-6-upstream-6.8.8.1-71.172.1

libMagickCore-6_Q16-1-6.8.8.1-71.172.1

libMagickWand-6_Q16-1-6.8.8.1-71.172.1

Ссылки

https://www.suse.com/support/update/announcement/2022/suse-su-20221885-1/
Link for SUSE-SU-2022:1885-1
https://lists.suse.com/pipermail/sle-security-updates/2022-May/011200.html
E-Mail link for SUSE-SU-2022:1885-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1198351
SUSE Bug 1198351
https://bugzilla.suse.com/1199350
SUSE Bug 1199350
https://www.suse.com/security/cve/CVE-2022-1270/
SUSE CVE CVE-2022-1270 page
https://www.suse.com/security/cve/CVE-2022-28463/
SUSE CVE CVE-2022-28463 page

Описание

In GraphicsMagick, a heap buffer overflow was found when parsing MIFF.

Затронутые продукты

HPE Helion OpenStack 8:ImageMagick-config-6-SUSE-6.8.8.1-71.172.1

HPE Helion OpenStack 8:ImageMagick-config-6-upstream-6.8.8.1-71.172.1

HPE Helion OpenStack 8:libMagickCore-6_Q16-1-6.8.8.1-71.172.1

HPE Helion OpenStack 8:libMagickWand-6_Q16-1-6.8.8.1-71.172.1

Ссылки

https://www.suse.com/security/cve/CVE-2022-1270.html
CVE-2022-1270
https://bugzilla.suse.com/1198351
SUSE Bug 1198351
https://bugzilla.suse.com/1199110
SUSE Bug 1199110
https://bugzilla.suse.com/1205067
SUSE Bug 1205067

Описание

ImageMagick 7.1.0-27 is vulnerable to Buffer Overflow.

Затронутые продукты

HPE Helion OpenStack 8:ImageMagick-config-6-SUSE-6.8.8.1-71.172.1

HPE Helion OpenStack 8:ImageMagick-config-6-upstream-6.8.8.1-71.172.1

HPE Helion OpenStack 8:libMagickCore-6_Q16-1-6.8.8.1-71.172.1

HPE Helion OpenStack 8:libMagickWand-6_Q16-1-6.8.8.1-71.172.1

Ссылки

https://www.suse.com/security/cve/CVE-2022-28463.html
CVE-2022-28463
https://bugzilla.suse.com/1199350
SUSE Bug 1199350

SUSE-SU-2022:1885-1

Описание

Список пакетов

HPE Helion OpenStack 8

SUSE Linux Enterprise Server 12 SP2-BCL

SUSE Linux Enterprise Server 12 SP3-BCL

SUSE Linux Enterprise Server 12 SP3-LTSS

SUSE Linux Enterprise Server 12 SP4-LTSS

SUSE Linux Enterprise Server 12 SP5

SUSE Linux Enterprise Server for SAP Applications 12 SP3

SUSE Linux Enterprise Server for SAP Applications 12 SP4

SUSE Linux Enterprise Server for SAP Applications 12 SP5

SUSE Linux Enterprise Software Development Kit 12 SP5

SUSE Linux Enterprise Workstation Extension 12 SP5

SUSE OpenStack Cloud 8

SUSE OpenStack Cloud 9

SUSE OpenStack Cloud Crowbar 8

SUSE OpenStack Cloud Crowbar 9

Ссылки

Уязвимость: CVE-2022-1270

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2022-28463

Описание

Затронутые продукты

Ссылки