Overview Details Repositories Revisions Requests Users Attributes Meta
Security update for GraphicsMagick

This update for GraphicsMagick fixes several issues.

These security issues were fixed:

- CVE-2017-13065: Prevent NULL pointer dereference in the function
SVGStartElement (bsc#1055038)
- CVE-2018-5685: Prevent infinite loop and application hang in the ReadBMPImage
function. Remote attackers could leverage this vulnerability to cause a denial
of service via an image file with a crafted bit-field mask value (bsc#1075939)
- CVE-2017-18029: Prevent memory leak in the function ReadMATImage which
allowed remote attackers to cause a denial of service via a crafted file
(bsc#1076021).
- CVE-2017-18027: Prevent memory leak vulnerability in the function
ReadMATImage which allowed remote attackers to cause a denial of service via a
crafted file (bsc#1076051).

Fixed bugs
bnc#1055038
VUL-2: CVE-2017-13065: GraphicsMagick: GraphicsMagick 1.3.26 has a NULL pointer dereference vulnerability inthe function SVGStartElement in coders/svg.c.
bnc#1075939
VUL-0: CVE-2018-5685: GraphicsMagick,ImageMagick: infinite loop and application hang in the ReadBMPImage function (coders/bmp.c).
bnc#1076021
VUL-0: CVE-2017-18029: GraphicsMagick,ImageMagick: In ImageMagick 7.0.6-10 Q16, a memory leak vulnerability was found in thefunction ReadMATImage in coders/mat.c, which allow remote attackers to cause adenial of service via a crafted file
bnc#1076051
VUL-0: CVE-2017-18027: GraphicsMagick,ImageMagick: In ImageMagick 7.0.7-1 Q16, a memory leak vulnerability was found in thefunction ReadMATImage in coders/mat.c, which allow remote attackers to cause adenial of service via a crafted file.
CVE-2017-18029
CVE-2017-13063
CVE-2017-18027
CVE-2017-13065
CVE-2018-5685
Selected Binaries
openSUSE Build Service is sponsored by
Places