ALT-PU-2018-1520-1
Package ImageMagick updated to version 6.9.9.40-alt1 for branch sisyphus in task 203271.
Closed vulnerabilities
BDU:2021-03441
Уязвимость функции formatIPTCfromBuffer компонента coders/meta.c консольного графического редактора ImageMagick, связанная с выходом операции за допустимые границы буфера данных, позволяющая нарушителю получить доступ к конфиденциальным данным, а также вызвать отказ в обслуживании
Modified: 2024-11-21
CVE-2018-6405
In the ReadDCMImage function in coders/dcm.c in ImageMagick before 7.0.7-23, each redmap, greenmap, and bluemap variable can be overwritten by a new pointer. The previous pointer is lost, which leads to a memory leak. This allows remote attackers to cause a denial of service.
Modified: 2024-11-21
CVE-2019-10131
An off-by-one read vulnerability was discovered in ImageMagick before version 7.0.7-28 in the formatIPTCfromBuffer function in coders/meta.c. A local attacker may use this flaw to read beyond the end of the buffer or to crash the program.
- openSUSE-SU-2019:1427
- openSUSE-SU-2019:1427
- openSUSE-SU-2019:1683
- openSUSE-SU-2019:1683
- 108117
- 108117
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10131
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10131
- https://github.com/ImageMagick/ImageMagick/commit/cb1214c124e1bd61f7dd551b94a794864861592e
- https://github.com/ImageMagick/ImageMagick/commit/cb1214c124e1bd61f7dd551b94a794864861592e
- [debian-lts-announce] 20200818 [SECURITY] [DLA 2333-1] imagemagick security update
- [debian-lts-announce] 20200818 [SECURITY] [DLA 2333-1] imagemagick security update
- USN-4034-1
- USN-4034-1