Overview

File _patchinfo of Package patchinfo.9389

<patchinfo incident="9389">
  <issue tracker="bnc" id="1119822">VUL-0: CVE-2018-20184: GraphicsMagick,ImageMagick: heap-based buffer overflow in the WriteTGAImage function of tga.c</issue>
  <issue tracker="bnc" id="1119790">VUL-1: CVE-2018-20189: GraphicsMagick: ReadDIBImage crash / DoS via colormapping/direct pixels</issue>
  <issue tracker="cve" id="2018-20189"/>
  <issue tracker="cve" id="2018-20184"/>
  <category>security</category>
  <rating>moderate</rating>
  <packager>pgajdos</packager>
  <description>This update for GraphicsMagick fixes the following issues:

Security vulnerabilities fixed:

- CVE-2018-20184: Fixed heap-based buffer overflow in the WriteTGAImage function of tga.c (bsc#1119822)
- CVE-2018-20189: Fixed denial of service vulnerability in ReadDIBImage function of coders/dib.c (bsc#1119790)
</description>
  <summary>Security update for GraphicsMagick</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places