Back
    Linux Security
    Linux Security
    Linux Security

    Debian: DSA-3914-1: imagemagick security update

    Date
    Category Debian Linux Distribution - Security Advisories
    129
    Posted By
    This updates fixes several vulnerabilities in imagemagick: Various memory handling problems and cases of missing or incomplete input sanitising may result in denial of service, memory disclosure or the execution of arbitrary code if malformed RLE, SVG, PSD, PDB, DPX, MAT, 
    -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- -------------------------------------------------------------------------
Debian Security Advisory DSA-3914-1                   This email address is being protected from spambots. You need JavaScript enabled to view it.
https://www.debian.org/security/                       Moritz Muehlenhoff
July 18, 2017                         https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : imagemagick
CVE ID         : CVE-2017-9439 CVE-2017-9440 CVE-2017-9500 CVE-2017-9501 
                 CVE-2017-10928 CVE-2017-11141 CVE-2017-11170  
                 CVE-2017-11360 CVE-2017-11188
Debian Bug     : 863126 867367 867778 867721 864273 864274 867806 868264
                 868184 867810 867808 867811 867812 867896 867798 867821
                 867824 867825 867826 867893 867823 867894 867897

This updates fixes several vulnerabilities in imagemagick: Various
memory handling problems and cases of missing or incomplete input
sanitising may result in denial of service, memory disclosure or the
execution of arbitrary code if malformed RLE, SVG, PSD, PDB, DPX, MAT,
TGA, VST, CIN, DIB, MPC, EPT, JNG, DJVU, JPEG, ICO, PALM or MNG
files are processed.
		       
For the oldstable distribution (jessie), these problems have been fixed
in version 8:6.8.9.9-5+deb8u10.

For the stable distribution (stretch), these problems have been fixed in
version 8:6.9.7.4+dfsg-11+deb9u1.

For the unstable distribution (sid), these problems have been fixed in
version 8:6.9.7.4+dfsg-12.

We recommend that you upgrade your imagemagick packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it.

    Get the Latest News & Insights

    Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox

    Related News

    Stars and Stripes: NASA and Linux
    Stars and Stripes: NASA and Linux
    Linus Torvalds wants Apple’s new M1-powered Macs to run Linux
    Linus Torvalds wants Apple’s new M1-powered Macs to run Linux
    Kali Linux 2020.4 switches the default shell from Bash to ZSH
    Kali Linux 2020.4 switches the default shell from Bash to ZSH
    Microsoft uses Linux to power new VPN solution for mobile devices
    Microsoft uses Linux to power new VPN solution for mobile devices

    Advisories

    SUSE: 2020:3491-1 important: the Linux Kernel
    Date 23 Nov 2020 @ 11:17
    Mageia 2020-0439: vino security update
    Date 23 Nov 2020 @ 10:52
    Mageia 2020-0438: python-cryptography security update
    Date 23 Nov 2020 @ 10:52
    Mageia 2020-0437: tcpreplay security update
    Date 23 Nov 2020 @ 10:52

    LinuxSecurity Poll

    I agree with Linus Torvalds - Apple's new M1-powered laptops should run on Linux.

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 2 answer(s).
    /main-polls/45-i-agree-with-linus-torvalds-apple-s-new-m1-powered-laptops-should-run-on-linux?task=poll.vote&format=json
    45
    radio
    [{"id":"158","title":"True","votes":"11","type":"x","order":"1","pct":100,"resources":[]},{"id":"159","title":"False","votes":"0","type":"x","order":"2","pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350

    Please vote first in order to view vote results.


    VIEW MORE POLLS

    bottom 200
    Phishing Is The #1 Cybersecurity Threat Businesses Face

    Please enable / Bitte aktiviere JavaScript!
    Veuillez activer / Por favor activa el Javascript![ ? ]

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy. 

    Our Cookie Policy