Security update for ImageMagick
This update for ImageMagick fixes the following issues:
Security issue fixed:
- CVE-2019-19948: Fixed a heap-based buffer overflow in WriteSGIImage() (bsc#1159861).
- CVE-2019-19949: Fixed a heap-based buffer over-read in WritePNGImage() (bsc#1160369).
Non-security issue fixed:
- Fixed an issue where converting tiff to png would lead to unviewable files (bsc#1161194).
This update was imported from the SUSE:SLE-15:Update update project.
-
Submitted by
Petr Gajdos (pgajdos)
Fixed bugs
bnc#1160369
VUL-1: CVE-2019-19949: ImageMagick: heap-based buffer over-read in the function WritePNGImage of coders/png.c
bnc#1159861
VUL-0: CVE-2019-19948: ImageMagick: heap-based buffer overflow in the function WriteSGIImage
bnc#1161194
L3: ImageMagick - converting tiff to png sometimes produces unviewable .png files
