ALT-PU-2016-2089-1
Package ImageMagick updated to version 6.9.6.2-alt1 for branch sisyphus in task 170790.
Closed vulnerabilities
BDU:2017-00321
Уязвимость консольного графического редактора ImageMagick, позволяющая нарушителю вызвать отказ в обслуживании
BDU:2017-00695
Уязвимость консольного графического редактора ImageMagick, позволяющая нарушителю вызвать отказ в обслуживании
BDU:2017-00696
Уязвимость консольного графического редактора ImageMagick, позволяющая нарушителю вызвать отказ в обслуживании
BDU:2017-00697
Уязвимость консольного графического редактора ImageMagick, позволяющая нарушителю вызвать отказ в обслуживании
BDU:2017-00698
Уязвимость консольного графического редактора ImageMagick, позволяющая нарушителю вызвать отказ в обслуживании
BDU:2017-00699
Уязвимость консольного графического редактора ImageMagick, позволяющая нарушителю вызвать отказ в обслуживании
BDU:2017-00700
Уязвимость консольного графического редактора ImageMagick, позволяющая нарушителю вызвать отказ в обслуживании
BDU:2017-00706
Уязвимость консольного графического редактора ImageMagick, позволяющая нарушителю вызвать отказ в обслуживании
BDU:2017-00889
Уязвимость операционной системы OpenSUSE Leap, позволяющая нарушителю вызвать отказ в обслуживании
BDU:2017-00890
Уязвимость консольного графического редактора ImageMagick, позволяющая нарушителю вызвать отказ в обслуживании
Modified: 2024-11-21
CVE-2016-10046
Heap-based buffer overflow in the DrawImage function in magick/draw.c in ImageMagick before 6.9.5-5 allows remote attackers to cause a denial of service (application crash) via a crafted image file.
- [oss-security] 20161226 Re: CVE requests for various ImageMagick issues
- [oss-security] 20161226 Re: CVE requests for various ImageMagick issues
- 95183
- 95183
- https://bugzilla.redhat.com/show_bug.cgi?id=1410448
- https://bugzilla.redhat.com/show_bug.cgi?id=1410448
- https://github.com/ImageMagick/ImageMagick/commit/989f9f88ea6db09b99d25586e912c921c0da8d3f
- https://github.com/ImageMagick/ImageMagick/commit/989f9f88ea6db09b99d25586e912c921c0da8d3f
Modified: 2024-11-21
CVE-2016-10052
Buffer overflow in the WriteProfile function in coders/jpeg.c in ImageMagick before 6.9.5-6 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file.
- openSUSE-SU-2017:0391
- openSUSE-SU-2017:0391
- openSUSE-SU-2017:0399
- openSUSE-SU-2017:0399
- [oss-security] 20161226 Re: CVE requests for various ImageMagick issues
- [oss-security] 20161226 Re: CVE requests for various ImageMagick issues
- 95181
- 95181
- https://bugzilla.redhat.com/show_bug.cgi?id=1410459
- https://bugzilla.redhat.com/show_bug.cgi?id=1410459
- https://github.com/ImageMagick/ImageMagick/commit/13267a10845a8dadabed63072b537f050cec6daa
- https://github.com/ImageMagick/ImageMagick/commit/13267a10845a8dadabed63072b537f050cec6daa
- https://github.com/ImageMagick/ImageMagick/commit/9e187b73a8a1290bb0e1a1c878f8be1917aa8742
- https://github.com/ImageMagick/ImageMagick/commit/9e187b73a8a1290bb0e1a1c878f8be1917aa8742
Modified: 2024-11-21
CVE-2016-10053
The WriteTIFFImage function in coders/tiff.c in ImageMagick before 6.9.5-8 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted file.
- [oss-security] 20161226 Re: CVE requests for various ImageMagick issues
- [oss-security] 20161226 Re: CVE requests for various ImageMagick issues
- 95179
- 95179
- https://bugzilla.redhat.com/show_bug.cgi?id=1410461
- https://bugzilla.redhat.com/show_bug.cgi?id=1410461
- https://github.com/ImageMagick/ImageMagick/commit/728dc6a600cf4cbdac846964c85cc04339db8ac1
- https://github.com/ImageMagick/ImageMagick/commit/728dc6a600cf4cbdac846964c85cc04339db8ac1
- https://github.com/ImageMagick/ImageMagick/commit/f983dcdf9c178e0cbc49608a78713c5669aa1bb5
- https://github.com/ImageMagick/ImageMagick/commit/f983dcdf9c178e0cbc49608a78713c5669aa1bb5
Modified: 2024-11-21
CVE-2016-10054
Buffer overflow in the WriteMAPImage function in coders/map.c in ImageMagick before 6.9.5-8 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file.
- [oss-security] 20161226 Re: CVE requests for various ImageMagick issues
- [oss-security] 20161226 Re: CVE requests for various ImageMagick issues
- 95191
- 95191
- https://bugzilla.redhat.com/show_bug.cgi?id=1410462
- https://bugzilla.redhat.com/show_bug.cgi?id=1410462
- https://github.com/ImageMagick/ImageMagick/commit/10b3823a7619ed22d42764733eb052c4159bc8c1
- https://github.com/ImageMagick/ImageMagick/commit/10b3823a7619ed22d42764733eb052c4159bc8c1
- https://github.com/ImageMagick/ImageMagick/commit/eedd0c35bb2d8af7aa05f215689fdebd11633fa1
- https://github.com/ImageMagick/ImageMagick/commit/eedd0c35bb2d8af7aa05f215689fdebd11633fa1
Modified: 2024-11-21
CVE-2016-10055
Buffer overflow in the WritePDBImage function in coders/pdb.c in ImageMagick before 6.9.5-8 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file.
- [oss-security] 20161226 Re: CVE requests for various ImageMagick issues
- [oss-security] 20161226 Re: CVE requests for various ImageMagick issues
- 95193
- 95193
- https://bugzilla.redhat.com/show_bug.cgi?id=1410464
- https://bugzilla.redhat.com/show_bug.cgi?id=1410464
- https://github.com/ImageMagick/ImageMagick/commit/10b3823a7619ed22d42764733eb052c4159bc8c1
- https://github.com/ImageMagick/ImageMagick/commit/10b3823a7619ed22d42764733eb052c4159bc8c1
- https://github.com/ImageMagick/ImageMagick/commit/eedd0c35bb2d8af7aa05f215689fdebd11633fa1
- https://github.com/ImageMagick/ImageMagick/commit/eedd0c35bb2d8af7aa05f215689fdebd11633fa1
Modified: 2024-11-21
CVE-2016-10056
Buffer overflow in the sixel_decode function in coders/sixel.c in ImageMagick before 6.9.5-8 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file.
- [oss-security] 20161226 Re: CVE requests for various ImageMagick issues
- [oss-security] 20161226 Re: CVE requests for various ImageMagick issues
- 95190
- 95190
- 95191
- 95191
- https://bugzilla.redhat.com/show_bug.cgi?id=1410465
- https://bugzilla.redhat.com/show_bug.cgi?id=1410465
- https://github.com/ImageMagick/ImageMagick/commit/10b3823a7619ed22d42764733eb052c4159bc8c1
- https://github.com/ImageMagick/ImageMagick/commit/10b3823a7619ed22d42764733eb052c4159bc8c1
- https://github.com/ImageMagick/ImageMagick/commit/eedd0c35bb2d8af7aa05f215689fdebd11633fa1
- https://github.com/ImageMagick/ImageMagick/commit/eedd0c35bb2d8af7aa05f215689fdebd11633fa1
Modified: 2024-11-21
CVE-2016-10057
Buffer overflow in the WriteGROUP4Image function in coders/tiff.c in ImageMagick before 6.9.5-8 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file.
- [oss-security] 20161226 Re: CVE requests for various ImageMagick issues
- [oss-security] 20161226 Re: CVE requests for various ImageMagick issues
- 95192
- 95192
- https://bugzilla.redhat.com/show_bug.cgi?id=1410466
- https://bugzilla.redhat.com/show_bug.cgi?id=1410466
- https://github.com/ImageMagick/ImageMagick/commit/10b3823a7619ed22d42764733eb052c4159bc8c1
- https://github.com/ImageMagick/ImageMagick/commit/10b3823a7619ed22d42764733eb052c4159bc8c1
- https://github.com/ImageMagick/ImageMagick/commit/eedd0c35bb2d8af7aa05f215689fdebd11633fa1
- https://github.com/ImageMagick/ImageMagick/commit/eedd0c35bb2d8af7aa05f215689fdebd11633fa1
Modified: 2024-11-21
CVE-2016-10063
Buffer overflow in coders/tiff.c in ImageMagick before 6.9.5-1 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file, related to extend validity.
- [oss-security] 20161226 Re: CVE requests for various ImageMagick issues
- [oss-security] 20161226 Re: CVE requests for various ImageMagick issues
- 95210
- 95210
- https://bugzilla.redhat.com/show_bug.cgi?id=1410476
- https://bugzilla.redhat.com/show_bug.cgi?id=1410476
- https://github.com/ImageMagick/ImageMagick/commit/2bb6941a2d557f26a2f2049ade466e118eeaab91
- https://github.com/ImageMagick/ImageMagick/commit/2bb6941a2d557f26a2f2049ade466e118eeaab91
- https://github.com/ImageMagick/ImageMagick/commit/94936efda8aa63563211eda07a5ade92abb32f7a
- https://github.com/ImageMagick/ImageMagick/commit/94936efda8aa63563211eda07a5ade92abb32f7a
Modified: 2024-11-21
CVE-2016-10064
Buffer overflow in coders/tiff.c in ImageMagick before 6.9.5-1 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file.
- openSUSE-SU-2017:0391
- openSUSE-SU-2017:0391
- [oss-security] 20161226 Re: CVE requests for various ImageMagick issues
- [oss-security] 20161226 Re: CVE requests for various ImageMagick issues
- 95211
- 95211
- https://bugzilla.redhat.com/show_bug.cgi?id=1410478
- https://bugzilla.redhat.com/show_bug.cgi?id=1410478
- https://github.com/ImageMagick/ImageMagick/commit/63302366a63602acbaad5c8223a105811b2adddd
- https://github.com/ImageMagick/ImageMagick/commit/63302366a63602acbaad5c8223a105811b2adddd
- https://github.com/ImageMagick/ImageMagick/commit/f8877abac8e568b2f339cca70c2c3c1b6eaec288
- https://github.com/ImageMagick/ImageMagick/commit/f8877abac8e568b2f339cca70c2c3c1b6eaec288
Modified: 2024-11-21
CVE-2016-5010
coders/tiff.c in ImageMagick before 6.9.5-3 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted TIFF file.
- http://git.imagemagick.org/repos/ImageMagick/commit/c20de102cc57f3739a8870f79e728e3b0bea18c0
- http://git.imagemagick.org/repos/ImageMagick/commit/c20de102cc57f3739a8870f79e728e3b0bea18c0
- https://bugzilla.redhat.com/show_bug.cgi?id=1354500
- https://bugzilla.redhat.com/show_bug.cgi?id=1354500
- GLSA-201611-21
- GLSA-201611-21
Modified: 2024-11-21
CVE-2016-6491
Buffer overflow in the Get8BIMProperty function in MagickCore/property.c in ImageMagick before 6.9.5-4 and 7.x before 7.0.2-6 allows remote attackers to cause a denial of service (out-of-bounds read, memory leak, and crash) via a crafted image.
- [oss-security] 20160728 CVE-Request Buffer overflow ImageMagick
- [oss-security] 20160728 CVE-Request Buffer overflow ImageMagick
- [oss-security] 20160728 Re: CVE-Request Buffer overflow ImageMagick
- [oss-security] 20160728 Re: CVE-Request Buffer overflow ImageMagick
- http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html
- http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html
- 92186
- 92186
- 1036501
- 1036501
- https://github.com/ImageMagick/ImageMagick/blob/6.9.5-4/ChangeLog
- https://github.com/ImageMagick/ImageMagick/blob/6.9.5-4/ChangeLog
- https://github.com/ImageMagick/ImageMagick/commit/dd84447b63a71fa8c3f47071b09454efc667767b
- https://github.com/ImageMagick/ImageMagick/commit/dd84447b63a71fa8c3f47071b09454efc667767b
- GLSA-201611-21
- GLSA-201611-21
Modified: 2024-11-21
CVE-2016-7101
The SGI coder in ImageMagick before 7.0.2-10 allows remote attackers to cause a denial of service (out-of-bounds read) via a large row value in an sgi file.
- [oss-security] 20160926 CVE-2016-7101 - ImageMagick SGI Coder Out-Of-Bounds Read Vulnerability
- [oss-security] 20160926 CVE-2016-7101 - ImageMagick SGI Coder Out-Of-Bounds Read Vulnerability
- 93181
- 93181
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=836776
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=836776
- https://github.com/ImageMagick/ImageMagick/commit/7afcf9f71043df15508e46f079387bd4689a738d
- https://github.com/ImageMagick/ImageMagick/commit/7afcf9f71043df15508e46f079387bd4689a738d
- https://github.com/ImageMagick/ImageMagick/commit/8f8959033e4e59418d6506b345829af1f7a71127
- https://github.com/ImageMagick/ImageMagick/commit/8f8959033e4e59418d6506b345829af1f7a71127
Modified: 2024-11-21
CVE-2016-7799
MagickCore/profile.c in ImageMagick before 7.0.3-2 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file.
- DSA-3726
- DSA-3726
- [oss-security] 20161001 imagemagick mogrify global buffer overflow
- [oss-security] 20161001 imagemagick mogrify global buffer overflow
- [oss-security] 20161001 Re: imagemagick mogrify global buffer overflow
- [oss-security] 20161001 Re: imagemagick mogrify global buffer overflow
- 93264
- 93264
- https://github.com/ImageMagick/ImageMagick/commit/a7bb158b7bedd1449a34432feb3a67c8f1873bfa
- https://github.com/ImageMagick/ImageMagick/commit/a7bb158b7bedd1449a34432feb3a67c8f1873bfa
- https://github.com/ImageMagick/ImageMagick/issues/280
- https://github.com/ImageMagick/ImageMagick/issues/280
- GLSA-201611-21
- GLSA-201611-21
Modified: 2024-11-21
CVE-2016-8677
The AcquireQuantumPixels function in MagickCore/quantum.c in ImageMagick before 7.0.3-1 allows remote attackers to have unspecified impact via a crafted image file, which triggers a memory allocation failure.
- openSUSE-SU-2016:2671
- openSUSE-SU-2016:2671
- DSA-3726
- DSA-3726
- [oss-security] 20161015 Re: imagemagick: memory allocate failure in AcquireQuantumPixels (quantum.c)
- [oss-security] 20161015 Re: imagemagick: memory allocate failure in AcquireQuantumPixels (quantum.c)
- 93598
- 93598
- https://blogs.gentoo.org/ago/2016/10/07/imagemagick-memory-allocate-failure-in-acquirequantumpixels-quantum-c/
- https://blogs.gentoo.org/ago/2016/10/07/imagemagick-memory-allocate-failure-in-acquirequantumpixels-quantum-c/
- https://bugzilla.redhat.com/show_bug.cgi?id=1385698
- https://bugzilla.redhat.com/show_bug.cgi?id=1385698
- https://github.com/ImageMagick/ImageMagick/commit/6e48aa92ff4e6e95424300ecd52a9ea453c19c60
- https://github.com/ImageMagick/ImageMagick/commit/6e48aa92ff4e6e95424300ecd52a9ea453c19c60
- https://github.com/ImageMagick/ImageMagick/issues/268
- https://github.com/ImageMagick/ImageMagick/issues/268