File _patchinfo of Package patchinfo.6416
<patchinfo incident="6416"> <issue id="1052720" tracker="bnc">VUL-1: CVE-2017-12672: GraphicsMagick, ImageMagick: Memory leak in ReadMATImage in coders/mat.c, which allows attackers to cause DoS</issue> <issue id="1052732" tracker="bnc">VUL-1: CVE-2017-12667: GraphicsMagick, ImageMagick: Memory leak vulnerability in ReadMATImage in coders\mat.c</issue> <issue id="1052731" tracker="bnc">VUL-2: CVE-2017-12670: ImageMagick: Missing validation in coders/mat.c, leading to an assertion failure in DestroyImage</issue> <issue id="1055434" tracker="bnc">VUL-1: CVE-2017-13648: GraphicsMagick,ImageMagick: In GraphicsMagick 1.3.26, a memory leak vulnerability was found in thefunction ReadMATImage in coders/mat.c.</issue> <issue id="1074973" tracker="bnc">VUL-0: CVE-2018-5246: ImageMagick: memory leaks in ReadPATTERNImage incoders/pattern.c could lead to denial of service</issue> <issue id="1050606" tracker="bnc">VUL-1: CVE-2017-11644: GraphicsMagick, ImageMagick: Memory Leak in ReadMATImage() in coders/mat.c</issue> <issue id="1047898" tracker="bnc">VUL-2: CVE-2017-11141: ImageMagick: In ReadMATImage in coders\mat.c a memory leak allows for memory exhaustion via a crafted MAT file</issue> <issue id="1052710" tracker="bnc">VUL-1: CVE-2017-12675: GraphicsMagick, ImageMagick: Missing free for multidimensional data in coders/mat.c, leading to a memory leak</issue> <issue id="1052468" tracker="bnc">VUL-1: CVE-2017-12564: GraphicsMagick, ImageMagick: Memory leak in functionReadMATImage in coders/mat.c, which allows attackers to cause a DoS</issue> <issue id="1058640" tracker="bnc">VUL-1: CVE-2017-14326: ImageMagick: Memory leak in the ReadMATImage function</issue> <issue id="1055323" tracker="bnc">VUL-2: CVE-2017-13146: ImageMagick: In ImageMagick before 6.9.8-5 and 7.x before 7.0.5-6, there is a memoryleak in the ReadMATImage function in coders/mat.c.</issue> <issue id="1074969" tracker="bnc">VUL-0: CVE-2018-5247: ImageMagick: memory leaks in ReadRLAImage incoders/rla.c could lead to denial of service</issue> <issue id="1074975" tracker="bnc">VUL-0: CVE-2017-18022: ImageMagick: memory leaks in MontageImageCommand inMagickWand/montage.c could lead to denial of service</issue> <issue id="1051446" tracker="bnc">VUL-1: CVE-2017-11724: ImageMagick: ReadMATImage in coders/mat.c leaks memory involving the quantum_info and clone_info datastructures</issue> <issue id="1052550" tracker="bnc">VUL-2: CVE-2017-12434: ImageMagick: Missing NULL check in ReadMATImage in coders/mat.c, which allows attackers to cause a DoS</issue> <issue id="1050120" tracker="bnc">VUL-2: CVE-2017-11529: ImageMagick: ReadMATImage in coders/mat.c allows remote attackers to cause DoS</issue> <issue id="1059751" tracker="bnc">VUL-1: CVE-2017-14533: ImageMagick: memory leak in ReadMATImage in coders/mat.c.</issue> <issue id="1055065" tracker="bnc">VUL-1: CVE-2017-13060: ImageMagick: In ImageMagick 7.0.6-5, a memory leak vulnerability was found in thefunction ReadMATImage in coders/mat.c, which allows attackers to causea denial of service via a crafted file.</issue> <issue id="1074123" tracker="bnc">VUL-0: CVE-2017-17881: ImageMagick: A Memory leak in the function ReadMATImage could lead to a denial of service</issue> <issue id="1055855" tracker="bnc">VUL-2: CVE-2017-13658: GraphicsMagick, ImageMagick: A missing NULL check in the ReadMATImage function in coders/mat.c could leading to a denial of service</issue> <issue id="1047044" tracker="bnc">VUL-1: CVE-2017-10800: GraphicsMagick,ImageMagick: OOM in ReadMATImage()</issue> <issue id="2018-5246" tracker="cve" /> <issue id="2017-14533" tracker="cve" /> <issue id="2017-11644" tracker="cve" /> <issue id="2017-11724" tracker="cve" /> <issue id="2017-11529" tracker="cve" /> <issue id="2017-12564" tracker="cve" /> <issue id="2017-10800" tracker="cve" /> <issue id="2017-11141" tracker="cve" /> <issue id="2017-12667" tracker="cve" /> <issue id="2017-13658" tracker="cve" /> <issue id="2017-17881" tracker="cve" /> <issue id="2017-14326" tracker="cve" /> <issue id="2017-18022" tracker="cve" /> <issue id="2017-12434" tracker="cve" /> <issue id="2017-12672" tracker="cve" /> <issue id="2017-12670" tracker="cve" /> <issue id="2018-5247" tracker="cve" /> <issue id="2017-12675" tracker="cve" /> <issue id="2017-13060" tracker="cve" /> <issue id="2017-13146" tracker="cve" /> <issue id="2017-13648" tracker="cve" /> <category>security</category> <rating>moderate</rating> <packager>pgajdos</packager> <description>This update for ImageMagick fixes several issues. These security issues were fixed: - CVE-2018-5246: Fixed memory leak vulnerability in ReadPATTERNImage in coders/pattern.c (bsc#1074973) - CVE-2017-18022: Fixed memory leak vulnerability in MontageImageCommand in MagickWand/montage.c (bsc#1074975) - CVE-2018-5247: Fixed memory leak vulnerability in ReadRLAImage in coders/rla.c (bsc#1074969) - CVE-2017-12672: Fixed a memory leak vulnerability in the function ReadMATImage in coders/mat.c, which allowed attackers to cause a denial of service (bsc#1052720) - CVE-2017-13060: Fixed a memory leak vulnerability in the function ReadMATImage in coders/mat.c, which allowed attackers to cause a denial of service via a crafted file (bsc#1055065) - CVE-2017-11724: Fixed a memory leak vulnerability in the function ReadMATImage in coders/mat.c involving the quantum_info and clone_info data structures (bsc#1051446) - CVE-2017-12670: Added validation in coders/mat.c to prevent an assertion failure in the function DestroyImage in MagickCore/image.c, which allowed attackers to cause a denial of service (bsc#1052731) - CVE-2017-12667: Fixed a memory leak vulnerability in the function ReadMATImage in coders/mat.c (bsc#1052732) - CVE-2017-13146: Fixed a memory leak vulnerability in the function ReadMATImage in coders/mat.c (bsc#1055323) - CVE-2017-10800: Processing MATLAB images in coders/mat.c could have lead to a denial of service (OOM) in ReadMATImage() if the size specified for a MAT Object was larger than the actual amount of data (bsc#1047044) - CVE-2017-13648: Fixed a memory leak vulnerability in the function ReadMATImage in coders/mat.c (bsc#1055434) - CVE-2017-11141: Fixed a memory leak vulnerability in the function ReadMATImage in coders\mat.c that could have caused memory exhaustion via a crafted MAT file, related to incorrect ordering of a SetImageExtent call (bsc#1047898) - CVE-2017-11529: The ReadMATImage function in coders/mat.c allowed remote attackers to cause a denial of service (memory leak) via a crafted file (bsc#1050120) - CVE-2017-12564: Fixed a memory leak vulnerability in the function ReadMATImage in coders/mat.c, which allowed attackers to cause a denial of service (bsc#1052468) - CVE-2017-12434: Added a missing NULL check in the function ReadMATImage in coders/mat.c, which allowed attackers to cause a denial of service (assertion failure) in DestroyImageInfo in image.c (bsc#1052550) - CVE-2017-12675: Added a missing check for multidimensional data coders/mat.c, that could have lead to a memory leak in the function ReadImage in MagickCore/constitute.c, which allowed attackers to cause a denial of service (bsc#1052710) - CVE-2017-14326: Fixed a memory leak vulnerability in the function ReadMATImage in coders/mat.c, which allowed attackers to cause a denial of service via a crafted file (bsc#1058640) - CVE-2017-11644: Processesing a crafted file in convert could have lead to a memory leak in the ReadMATImage() function in coders/mat.c (bsc#1050606) - CVE-2017-13658: Added a missing NULL check in the ReadMATImage function in coders/mat.c, which could have lead to a denial of service (assertion failure and application exit) in the DestroyImageInfo function in MagickCore/image.c (bsc#1055855) - CVE-2017-14533: Fixed a memory leak vulnerability in the function ReadMATImage in coders/mat.c (bsc#1059751) - CVE-2017-17881: Fixed a memory leak vulnerability in the function ReadMATImage in coders/mat.c, which allowed attackers to cause a denial of service via a crafted MAT image file (bsc#1074123) </description> <summary>Security update for ImageMagick</summary> </patchinfo>
