Overview

File _patchinfo of Package patchinfo.7563

<patchinfo incident="7563">
  <issue id="1051847" tracker="bnc">VUL-1: CVE-2017-12140: ImageMagick: ReadDCMImage in coders\dcm.c has a ninteger signedness error leading to excessive memory consumption</issue>
  <issue id="1061587" tracker="bnc">VUL-0: CVE-2017-14994: GraphicsMagick: denial of service (NULL pointer) in ReadDCMImage in coders/dcm.c</issue>
  <issue id="1052758" tracker="bnc">VUL-1: CVE-2017-12662: GraphicsMagick, ImageMagick: Memory leak in WritePDFImage in coders/pdf.c</issue>
  <issue id="1060577" tracker="bnc">VUL-0: CVE-2017-14733: GraphicsMagick: Heap overflow on ReadRLEImage in coders/rle.c could lead to denial of service</issue>
  <issue id="1052764" tracker="bnc">VUL-1: CVE-2017-12644: ImageMagick: Memory leak in ReadDCMImage in coders\dcm.c</issue>
  <issue id="1047054" tracker="bnc">VUL-1: CVE-2017-10799: GraphicsMagick,ImageMagick: denial of service (OOM) can occur inReadDPXImage().</issue>
  <issue id="2017-14733" tracker="cve" />
  <issue id="2017-14994" tracker="cve" />
  <issue id="2017-10799" tracker="cve" />
  <issue id="2017-12140" tracker="cve" />
  <issue id="2017-12662" tracker="cve" />
  <issue id="2017-12644" tracker="cve" />
  <category>security</category>
  <rating>important</rating>
  <packager>pgajdos</packager>
  <description>This update for GraphicsMagick fixes the following issues:

    * CVE-2017-12140: ReadDCMImage in coders\dcm.c has a ninteger signedness error 
      leading to excessive memory consumption (bnc#1051847)
    * CVE-2017-14994: NULL pointer in ReadDCMImage in coders/dcm.c could lead to denial of service (bnc#1061587)
    * CVE-2017-12662: Memory leak in WritePDFImage in coders/pdf.c could lead to denial of service (bnc#1052758)
    * CVE-2017-14733: Heap overflow on ReadRLEImage in coders/rle.c could lead to denial of service (bnc#1060577) 
    * CVE-2017-12644: Memory leak in ReadDCMImage in coders\dcm.c could lead to denial of service (bnc#1052764)
    * CVE-2017-10799: denial of service (OOM) can occur inReadDPXImage() (bnc#1047054)
</description>
  <summary>Security update for GraphicsMagick</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places