Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 580
Alerts This Week
Warning Icon 1 580

Mageia 6: MGASA-2019-0085 Critical: Libwmf Double Free Issue

mageia
Calendar Grey February 14, 2019
Dist Mageia Esm H88
Mageia 2020-0121 upgrades libwmf to fix memory corruption issue in image processing library, improving system safety.
The GD Graphics Library (aka LibGD) 2.2.5 has a double free in the gdImage*Ptr() functions in gd_gif_out.c, gd_jpeg.c, and gd_wbmp.c

Summary

The GD Graphics Library (aka LibGD) 2.2.5 has a double free in the gdImage*Ptr() functions in gd_gif_out.c, gd_jpeg.c, and gd_wbmp.c. NOTE: PHP is unaffected. (CVE-2019-6978)

References

- https://bugs.mageia.org/show_bug.cgi?id=24344

- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/L32G56HKBVCM2HEZASWDWDWEXQTBWNZP/

- https://www.cve.org/CVERecord?id=CVE-2019-6978

Resolution

SRPMS

- 6/core/libwmf-0.2.12-1.mga6

Severity
critical
Lowest
Low
Medium
High
Critical

Publication date: 14 Feb 2019
URL: https://advisories.mageia.org/MGASA-2019-0085.html
Type: security
CVE: CVE-2019-6978

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.