openSUSE-SU-2019:1427-1

Опубликовано: 21 мая 2019

Источник: suse-cvrf

Описание

Security update for GraphicsMagick

This update for GraphicsMagick fixes the following issues:

CVE-2019-10131: Fixed a denial of service vulnerability caused by an off-by-one read in formatIPTCfromBuffer() (boo#1134075)

Список пакетов

openSUSE Leap 42.3

GraphicsMagick-1.3.25-138.1

GraphicsMagick-devel-1.3.25-138.1

libGraphicsMagick++-Q16-12-1.3.25-138.1

libGraphicsMagick++-devel-1.3.25-138.1

libGraphicsMagick-Q16-3-1.3.25-138.1

libGraphicsMagick3-config-1.3.25-138.1

libGraphicsMagickWand-Q16-2-1.3.25-138.1

perl-GraphicsMagick-1.3.25-138.1

Ссылки

https://lists.opensuse.org/opensuse-security-announce/2019-05/msg00051.html
E-Mail link for openSUSE-SU-2019:1427-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

An off-by-one read vulnerability was discovered in ImageMagick before version 7.0.7-28 in the formatIPTCfromBuffer function in coders/meta.c. A local attacker may use this flaw to read beyond the end of the buffer or to crash the program.

Затронутые продукты

openSUSE Leap 42.3:GraphicsMagick-1.3.25-138.1

openSUSE Leap 42.3:GraphicsMagick-devel-1.3.25-138.1

openSUSE Leap 42.3:libGraphicsMagick++-Q16-12-1.3.25-138.1

openSUSE Leap 42.3:libGraphicsMagick++-devel-1.3.25-138.1

Ссылки

https://www.suse.com/security/cve/CVE-2019-10131.html
CVE-2019-10131
https://bugzilla.suse.com/1134075
SUSE Bug 1134075

openSUSE-SU-2019:1427-1

Описание

Список пакетов

openSUSE Leap 42.3

Ссылки

Уязвимость: CVE-2019-10131

Описание

Затронутые продукты

Ссылки