ArchLinux: 201607-13: imagemagick: information leakage
Summary
An out-of-bounds read has been found in ImageMagick's Get8BIMProperty() function. This issue can lead to memory leak since the data read is written to the output image afterwards.
Resolution
Upgrade to 6.9.5.3-1.
# pacman -Syu "imagemagick>=6.9.5.3-1"
The problem has been fixed upstream in version 6.9.5-3.
References
https://seclists.org/oss-sec/2016/q3/194 https://access.redhat.com/security/cve/CVE-2016-6491
Workaround
None.