ALT-PU-2018-1823-1
Package ImageMagick updated to version 6.9.9.47-alt1 for branch sisyphus in task 206803.
Closed vulnerabilities
Published: 2018-05-02
BDU:2021-03345
Уязвимость функции ReadOneJNGImage компонента coders/png.c консольного графического редактора ImageMagick, связанная с разыменованием нулевого указателя, позволяющая нарушителю вызвать отказ в обслуживании
Severity: MEDIUM (6.5)
Vector: AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
References:
Published: 2018-09-09
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2018-16749
In ImageMagick 7.0.7-29 and earlier, a missing NULL check in ReadOneJNGImage in coders/png.c allows an attacker to cause a denial of service (WriteBlob assertion failure and application exit) via a crafted file.
Severity: MEDIUM (6.5)
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
References:
- https://github.com/ImageMagick/ImageMagick/issues/1119
- https://github.com/ImageMagick/ImageMagick/issues/1119
- https://github.com/ImageMagick/ImageMagick6/commit/1007b98f8795ad4bea6bc5f68a32d83e982fdae4
- https://github.com/ImageMagick/ImageMagick6/commit/1007b98f8795ad4bea6bc5f68a32d83e982fdae4
- [debian-lts-announce] 20181003 [SECURITY] [DLA 1530-1] imagemagick security update
- [debian-lts-announce] 20181003 [SECURITY] [DLA 1530-1] imagemagick security update
- [debian-lts-announce] 20200907 [SECURITY] [DLA 2366-1] imagemagick security update
- [debian-lts-announce] 20200907 [SECURITY] [DLA 2366-1] imagemagick security update
- USN-3785-1
- USN-3785-1
Published: 2018-09-09
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2018-16750
In ImageMagick 7.0.7-29 and earlier, a memory leak in the formatIPTCfromBuffer function in coders/meta.c was found.
Severity: MEDIUM (6.5)
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
References: