Описание
Security update for GraphicsMagick
This update for GraphicsMagick fixes the following security issues:
- CVE-2016-9556: Maliciously crafted image headers could cause denial of service in image format detection routines (boo#1011130)
- CVE-2016-9559: Maliciously crafted image headers could cause denial of service in image format detection routines for TIFF (boo#1011136)
Список пакетов
openSUSE Leap 42.1
GraphicsMagick-1.3.21-20.1
GraphicsMagick-devel-1.3.21-20.1
libGraphicsMagick++-Q16-11-1.3.21-20.1
libGraphicsMagick++-devel-1.3.21-20.1
libGraphicsMagick-Q16-3-1.3.21-20.1
libGraphicsMagick3-config-1.3.21-20.1
libGraphicsMagickWand-Q16-2-1.3.21-20.1
perl-GraphicsMagick-1.3.21-20.1
Ссылки
- E-Mail link for openSUSE-SU-2016:3024-1
- SUSE Security Ratings
Описание
The IsPixelGray function in MagickCore/pixel-accessor.h in ImageMagick 7.0.3-8 allows remote attackers to cause a denial of service (out-of-bounds heap read) via a crafted image file.
Затронутые продукты
openSUSE Leap 42.1:GraphicsMagick-1.3.21-20.1
openSUSE Leap 42.1:GraphicsMagick-devel-1.3.21-20.1
openSUSE Leap 42.1:libGraphicsMagick++-Q16-11-1.3.21-20.1
openSUSE Leap 42.1:libGraphicsMagick++-devel-1.3.21-20.1
Ссылки
- CVE-2016-9556
- SUSE Bug 1011130
- SUSE Bug 1013376
Описание
coders/tiff.c in ImageMagick before 7.0.3.7 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted image.
Затронутые продукты
openSUSE Leap 42.1:GraphicsMagick-1.3.21-20.1
openSUSE Leap 42.1:GraphicsMagick-devel-1.3.21-20.1
openSUSE Leap 42.1:libGraphicsMagick++-Q16-11-1.3.21-20.1
openSUSE Leap 42.1:libGraphicsMagick++-devel-1.3.21-20.1
Ссылки
- CVE-2016-9559
- SUSE Bug 1011136