openSUSE-SU-2019:0016-1

Опубликовано: 11 янв. 2019

Источник: suse-cvrf

Описание

Security update for GraphicsMagick

This update for GraphicsMagick fixes the following issue:

Security issue fixed:

CVE-2018-20467: Fixed infinite loop in coders/bmp.c (boo#1120381)

Список пакетов

openSUSE Leap 42.3

GraphicsMagick-1.3.25-123.1

GraphicsMagick-devel-1.3.25-123.1

libGraphicsMagick++-Q16-12-1.3.25-123.1

libGraphicsMagick++-devel-1.3.25-123.1

libGraphicsMagick-Q16-3-1.3.25-123.1

libGraphicsMagick3-config-1.3.25-123.1

libGraphicsMagickWand-Q16-2-1.3.25-123.1

perl-GraphicsMagick-1.3.25-123.1

Ссылки

https://lists.opensuse.org/opensuse-security-announce/2019-01/msg00005.html
E-Mail link for openSUSE-SU-2019:0016-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

In coders/bmp.c in ImageMagick before 7.0.8-16, an input file can result in an infinite loop and hang, with high CPU and memory consumption. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted file.

Затронутые продукты

openSUSE Leap 42.3:GraphicsMagick-1.3.25-123.1

openSUSE Leap 42.3:GraphicsMagick-devel-1.3.25-123.1

openSUSE Leap 42.3:libGraphicsMagick++-Q16-12-1.3.25-123.1

openSUSE Leap 42.3:libGraphicsMagick++-devel-1.3.25-123.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-20467.html
CVE-2018-20467
https://bugzilla.suse.com/1120381
SUSE Bug 1120381

openSUSE-SU-2019:0016-1

Описание

Список пакетов

openSUSE Leap 42.3

Ссылки

Уязвимость: CVE-2018-20467

Описание

Затронутые продукты

Ссылки