Описание
Security update for GraphicsMagick
This update for GraphicsMagick fixes the following issues:
- CVE-2017-11643: Heap overflow in WriteRGBImage() in coders/rgb.c could lead to denial of service [boo#1050611]
- CVE-2017-11636: Heap overflow in WriteCMYKImage()function in coders/cmyk.c could lead to denial of service [boo#1050674]
Список пакетов
openSUSE Leap 42.2
GraphicsMagick-1.3.25-20.1
GraphicsMagick-devel-1.3.25-20.1
libGraphicsMagick++-Q16-12-1.3.25-20.1
libGraphicsMagick++-devel-1.3.25-20.1
libGraphicsMagick-Q16-3-1.3.25-20.1
libGraphicsMagick3-config-1.3.25-20.1
libGraphicsMagickWand-Q16-2-1.3.25-20.1
perl-GraphicsMagick-1.3.25-20.1
openSUSE Leap 42.3
GraphicsMagick-1.3.25-20.1
GraphicsMagick-devel-1.3.25-20.1
libGraphicsMagick++-Q16-12-1.3.25-20.1
libGraphicsMagick++-devel-1.3.25-20.1
libGraphicsMagick-Q16-3-1.3.25-20.1
libGraphicsMagick3-config-1.3.25-20.1
libGraphicsMagickWand-Q16-2-1.3.25-20.1
perl-GraphicsMagick-1.3.25-20.1
Ссылки
- E-Mail link for openSUSE-SU-2017:2249-1
- SUSE Security Ratings
Описание
GraphicsMagick 1.3.26 has a heap overflow in the WriteRGBImage() function in coders/rgb.c when processing multiple frames that have non-identical widths.
Затронутые продукты
openSUSE Leap 42.2:GraphicsMagick-1.3.25-20.1
openSUSE Leap 42.2:GraphicsMagick-devel-1.3.25-20.1
openSUSE Leap 42.2:libGraphicsMagick++-Q16-12-1.3.25-20.1
openSUSE Leap 42.2:libGraphicsMagick++-devel-1.3.25-20.1
Ссылки
- CVE-2017-11636
- SUSE Bug 1050674
- SUSE Bug 1053919
Описание
GraphicsMagick 1.3.26 has a heap overflow in the WriteCMYKImage() function in coders/cmyk.c when processing multiple frames that have non-identical widths.
Затронутые продукты
openSUSE Leap 42.2:GraphicsMagick-1.3.25-20.1
openSUSE Leap 42.2:GraphicsMagick-devel-1.3.25-20.1
openSUSE Leap 42.2:libGraphicsMagick++-Q16-12-1.3.25-20.1
openSUSE Leap 42.2:libGraphicsMagick++-devel-1.3.25-20.1
Ссылки
- CVE-2017-11643
- SUSE Bug 1050611
- SUSE Bug 1050674
- SUSE Bug 1053919