Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

openSUSE-SU-2021:1583-1

Опубликовано: 13 дек. 2021
Источник: suse-cvrf

Описание

Security update for ImageMagick

This update for ImageMagick fixes the following issues:

  • CVE-2021-20176: Fixed division by zero caused by processing crafted file (bsc#1181836).

This update was imported from the SUSE:SLE-15-SP2:Update update project.

Список пакетов

openSUSE Leap 15.2
ImageMagick-7.0.7.34-lp152.12.18.1
ImageMagick-config-7-SUSE-7.0.7.34-lp152.12.18.1
ImageMagick-config-7-upstream-7.0.7.34-lp152.12.18.1
ImageMagick-devel-7.0.7.34-lp152.12.18.1
ImageMagick-devel-32bit-7.0.7.34-lp152.12.18.1
ImageMagick-doc-7.0.7.34-lp152.12.18.1
ImageMagick-extra-7.0.7.34-lp152.12.18.1
libMagick++-7_Q16HDRI4-7.0.7.34-lp152.12.18.1
libMagick++-7_Q16HDRI4-32bit-7.0.7.34-lp152.12.18.1
libMagick++-devel-7.0.7.34-lp152.12.18.1
libMagick++-devel-32bit-7.0.7.34-lp152.12.18.1
libMagickCore-7_Q16HDRI6-7.0.7.34-lp152.12.18.1
libMagickCore-7_Q16HDRI6-32bit-7.0.7.34-lp152.12.18.1
libMagickWand-7_Q16HDRI6-7.0.7.34-lp152.12.18.1
libMagickWand-7_Q16HDRI6-32bit-7.0.7.34-lp152.12.18.1
perl-PerlMagick-7.0.7.34-lp152.12.18.1

Ссылки

Описание

A divide-by-zero flaw was found in ImageMagick 6.9.11-57 and 7.0.10-57 in gem.c. This flaw allows an attacker who submits a crafted file that is processed by ImageMagick to trigger undefined behavior through a division by zero. The highest threat from this vulnerability is to system availability.

Затронутые продукты
openSUSE Leap 15.2:ImageMagick-7.0.7.34-lp152.12.18.1
openSUSE Leap 15.2:ImageMagick-config-7-SUSE-7.0.7.34-lp152.12.18.1
openSUSE Leap 15.2:ImageMagick-config-7-upstream-7.0.7.34-lp152.12.18.1
openSUSE Leap 15.2:ImageMagick-devel-32bit-7.0.7.34-lp152.12.18.1
Ссылки