ALT-PU-2015-1867-1
Package ImageMagick updated to version 6.9.2.4-alt1 for branch sisyphus in task 151348.
Closed vulnerabilities
BDU:2017-00617
Уязвимость консольного графического редактора ImageMagick, позволяющая нарушителю вызвать отказ в обслуживании
BDU:2017-00618
Уязвимость консольного графического редактора ImageMagick, позволяющая нарушителю вызвать отказ в обслуживании
Modified: 2024-11-21
CVE-2015-8897
The SpliceImage function in MagickCore/transform.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service (application crash) via a crafted png file.
- http://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=28466
- http://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=28466
- [oss-security] 20160602 Re: ImageMagick CVEs
- [oss-security] 20160602 Re: ImageMagick CVEs
- http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
- http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
- 91030
- 91030
- RHSA-2016:1237
- RHSA-2016:1237
- https://github.com/ImageMagick/ImageMagick/commit/7b1cf5784b5bcd85aa9293ecf56769f68c037231
- https://github.com/ImageMagick/ImageMagick/commit/7b1cf5784b5bcd85aa9293ecf56769f68c037231
Modified: 2024-11-21
CVE-2015-8898
The WriteImages function in magick/constitute.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted image file.
- [oss-security] 20160602 Re: ImageMagick CVEs
- [oss-security] 20160602 Re: ImageMagick CVEs
- http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
- http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
- 91039
- 91039
- RHSA-2016:1237
- RHSA-2016:1237
- https://github.com/ImageMagick/ImageMagick/commit/5b4bebaa91849c592a8448bc353ab25a54ff8c44
- https://github.com/ImageMagick/ImageMagick/commit/5b4bebaa91849c592a8448bc353ab25a54ff8c44
- https://github.com/ImageMagick/ImageMagick/pull/34
- https://github.com/ImageMagick/ImageMagick/pull/34
Modified: 2024-11-21
CVE-2016-10252
Memory leak in the IsOptionMember function in MagickCore/option.c in ImageMagick before 6.9.2-2, as used in ODR-PadEnc and other products, allows attackers to trigger memory consumption.
- http://git.imagemagick.org/repos/ImageMagick/commit/6790815c75bdea0357df5564345847856e995d6b
- http://git.imagemagick.org/repos/ImageMagick/commit/6790815c75bdea0357df5564345847856e995d6b
- DSA-3808
- DSA-3808
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857426
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857426
- https://github.com/Opendigitalradio/ODR-PadEnc/issues/2
- https://github.com/Opendigitalradio/ODR-PadEnc/issues/2