Описание
Security update for GraphicsMagick
This update for GraphicsMagick fixes the following issues:
- CVE-2017-8350: an additional fix for a denial of service memory leak in the JNG decoder was done. [boo#1036985 c13-c21]
Список пакетов
openSUSE Leap 42.2
GraphicsMagick-1.3.25-11.12.3
GraphicsMagick-devel-1.3.25-11.12.3
libGraphicsMagick++-Q16-12-1.3.25-11.12.3
libGraphicsMagick++-devel-1.3.25-11.12.3
libGraphicsMagick-Q16-3-1.3.25-11.12.3
libGraphicsMagick3-config-1.3.25-11.12.3
libGraphicsMagickWand-Q16-2-1.3.25-11.12.3
perl-GraphicsMagick-1.3.25-11.12.3
Ссылки
- E-Mail link for openSUSE-SU-2017:1798-1
- SUSE Security Ratings
Описание
In ImageMagick 7.0.5-5, the ReadJNGImage function in png.c allows attackers to cause a denial of service (memory leak) via a crafted file.
Затронутые продукты
openSUSE Leap 42.2:GraphicsMagick-1.3.25-11.12.3
openSUSE Leap 42.2:GraphicsMagick-devel-1.3.25-11.12.3
openSUSE Leap 42.2:libGraphicsMagick++-Q16-12-1.3.25-11.12.3
openSUSE Leap 42.2:libGraphicsMagick++-devel-1.3.25-11.12.3
Ссылки
- CVE-2017-8350
- SUSE Bug 1036985
- SUSE Bug 1053919
- SUSE Bug 1126909