This update for GraphicsMagick fixes several issues.
These security issues were fixed:
- CVE-2017-13065: Prevent NULL pointer dereference in the function
SVGStartElement (bsc#1055038)
- CVE-2018-5685: Prevent infinite loop and application hang in the ReadBMPImage
function. Remote attackers could leverage this vulnerability to cause a denial
of service via an image file with a crafted bit-field mask value (bsc#1075939)
- CVE-2017-18029: Prevent memory leak in the function ReadMATImage which
allowed remote attackers to cause a denial of service via a crafted file
(bsc#1076021).
- CVE-2017-18027: Prevent memory leak vulnerability in the function
ReadMATImage which allowed remote attackers to cause a denial of service via a
crafted file (bsc#1076051).
- Submitted by Petr Gajdos (pgajdos)