Security update for GraphicsMagick
This update for GraphicsMagick fixes the following issues:
Security vulnerabilities fixed:
- CVE-2018-20184: Fixed heap-based buffer overflow in the WriteTGAImage function of tga.c (bsc#1119822)
- CVE-2018-20189: Fixed denial of service vulnerability in ReadDIBImage function of coders/dib.c (bsc#1119790)
-
Submitted by
Petr Gajdos (pgajdos)
Fixed bugs
bnc#1119822
VUL-0: CVE-2018-20184: GraphicsMagick,ImageMagick: heap-based buffer overflow in the WriteTGAImage function of tga.c
bnc#1119790
VUL-1: CVE-2018-20189: GraphicsMagick: ReadDIBImage crash / DoS via colormapping/direct pixels
