Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
openSUSE:Maintenance:7727
patchinfo
_patchinfo
Overview
Details
Repositories
Revisions
Requests
Users
Attributes
Meta
File _patchinfo of Package patchinfo
<patchinfo incident="7727"> <issue id="1055038" tracker="bnc">VUL-2: CVE-2017-13065: GraphicsMagick: GraphicsMagick 1.3.26 has a NULL pointer dereference vulnerability inthe function SVGStartElement in coders/svg.c.</issue> <issue id="1075939" tracker="bnc">VUL-0: CVE-2018-5685: GraphicsMagick,ImageMagick: infinite loop and application hang in the ReadBMPImage function (coders/bmp.c).</issue> <issue id="1076021" tracker="bnc">VUL-0: CVE-2017-18029: GraphicsMagick,ImageMagick: In ImageMagick 7.0.6-10 Q16, a memory leak vulnerability was found in thefunction ReadMATImage in coders/mat.c, which allow remote attackers to cause adenial of service via a crafted file</issue> <issue id="1076051" tracker="bnc">VUL-0: CVE-2017-18027: GraphicsMagick,ImageMagick: In ImageMagick 7.0.7-1 Q16, a memory leak vulnerability was found in thefunction ReadMATImage in coders/mat.c, which allow remote attackers to cause adenial of service via a crafted file.</issue> <issue id="2017-18029" tracker="cve" /> <issue id="2017-13063" tracker="cve" /> <issue id="2017-18027" tracker="cve" /> <issue id="2017-13065" tracker="cve" /> <issue id="2018-5685" tracker="cve" /> <category>security</category> <rating>moderate</rating> <packager>pgajdos</packager> <description>This update for GraphicsMagick fixes several issues. These security issues were fixed: - CVE-2017-13065: Prevent NULL pointer dereference in the function SVGStartElement (bsc#1055038) - CVE-2018-5685: Prevent infinite loop and application hang in the ReadBMPImage function. Remote attackers could leverage this vulnerability to cause a denial of service via an image file with a crafted bit-field mask value (bsc#1075939) - CVE-2017-18029: Prevent memory leak in the function ReadMATImage which allowed remote attackers to cause a denial of service via a crafted file (bsc#1076021). - CVE-2017-18027: Prevent memory leak vulnerability in the function ReadMATImage which allowed remote attackers to cause a denial of service via a crafted file (bsc#1076051). </description> <summary>Security update for GraphicsMagick</summary> </patchinfo>
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor