MGASA-2019-0187 - Updated graphicsmagick packages fix security vulnerabilities

Publication date: 10 Jun 2019
URL: https://advisories.mageia.org/MGASA-2019-0187.html
Type: security
Affected Mageia releases: 6
CVE: CVE-2019-11005,
     CVE-2019-11006,
     CVE-2019-11007,
     CVE-2019-11008,
     CVE-2019-11009,
     CVE-2019-11010,
     CVE-2019-11473,
     CVE-2019-11474,
     CVE-2019-11505,
     CVE-2019-11506

Updated graphicsmagick packages fix security vulnerabilities

In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a stack-based buffer
overflow in the function SVGStartElement of coders/svg.c, which allows
remote attackers to cause a denial of service (application crash) or
possibly have unspecified other impact via a quoted font family value.
(CVE-2019-11005)

In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer
over-read in the function ReadMIFFImage of coders/miff.c, which allows
attackers to cause a denial of service or information disclosure via an
RLE packet. (CVE-2019-11006)

In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer
over-read in the ReadMNGImage function of coders/png.c, which allows
attackers to cause a denial of service or information disclosure via an
image colormap. (CVE-2019-11007)

In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer
overflow in the function WriteXWDImage of coders/xwd.c, which allows
remote attackers to cause a denial of service (application crash) or
possibly have unspecified other impact via a crafted image file.
(CVE-2019-11008)

In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer
over-read in the function ReadXWDImage of coders/xwd.c, which allows
attackers to cause a denial of service or information disclosure via a
crafted image file. (CVE-2019-11009)

In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a memory leak in the
function ReadMPCImage of coders/mpc.c, which allows attackers to cause a
denial of service via a crafted image file. (CVE-2019-11010)

coders/xwd.c in GraphicsMagick 1.3.31 allows attackers to cause a denial
of service (out-of-bounds read and application crash) by crafting an XWD
image file, a different vulnerability than CVE-2019-11008 and
CVE-2019-11009. (CVE-2019-11473)

coders/xwd.c in GraphicsMagick 1.3.31 allows attackers to cause a denial
of service (floating-point exception and application crash) by crafting
an XWD image file, a different vulnerability than CVE-2019-11008 and
CVE-2019-11009. (CVE-2019-11474)

In GraphicsMagick from version 1.3.8 to 1.4 snapshot-20190403 Q8, there
is a heap-based buffer overflow in the function WritePDBImage of
coders/pdb.c, which allows an attacker to cause a denial of service or
possibly have unspecified other impact via a crafted image file. This is
related to MagickBitStreamMSBWrite in magick/bit_stream.c.
(CVE-2019-11505)

In GraphicsMagick from version 1.3.30 to 1.4 snapshot-20190403 Q8, there
is a heap-based buffer overflow in the function WriteMATLABImage of
coders/mat.c, which allows an attacker to cause a denial of service or
possibly have unspecified other impact via a crafted image file. This is
related to ExportRedQuantumType in magick/export.c. (CVE-2019-11506)

References:
- https://bugs.mageia.org/show_bug.cgi?id=24766
- - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11005
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11006
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11007
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11008
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11009
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11010
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11473
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11474
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11505
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11506

SRPMS:
- 6/core/graphicsmagick-1.3.31-1.5.mga6

Mageia 2019-0187: graphicsmagick security update

Updated graphicsmagick packages fix security vulnerabilities In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a stack-based buffer overflow in the function SVGStartElement of ...

Summary

Updated graphicsmagick packages fix security vulnerabilities
In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a stack-based buffer overflow in the function SVGStartElement of coders/svg.c, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a quoted font family value. (CVE-2019-11005)
In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer over-read in the function ReadMIFFImage of coders/miff.c, which allows attackers to cause a denial of service or information disclosure via an RLE packet. (CVE-2019-11006)
In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer over-read in the ReadMNGImage function of coders/png.c, which allows attackers to cause a denial of service or information disclosure via an image colormap. (CVE-2019-11007)
In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer overflow in the function WriteXWDImage of coders/xwd.c, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image file. (CVE-2019-11008)
In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer over-read in the function ReadXWDImage of coders/xwd.c, which allows attackers to cause a denial of service or information disclosure via a crafted image file. (CVE-2019-11009)
In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a memory leak in the function ReadMPCImage of coders/mpc.c, which allows attackers to cause a denial of service via a crafted image file. (CVE-2019-11010)
coders/xwd.c in GraphicsMagick 1.3.31 allows attackers to cause a denial of service (out-of-bounds read and application crash) by crafting an XWD image file, a different vulnerability than CVE-2019-11008 and CVE-2019-11009. (CVE-2019-11473)
coders/xwd.c in GraphicsMagick 1.3.31 allows attackers to cause a denial of service (floating-point exception and application crash) by crafting an XWD image file, a different vulnerability than CVE-2019-11008 and CVE-2019-11009. (CVE-2019-11474)
In GraphicsMagick from version 1.3.8 to 1.4 snapshot-20190403 Q8, there is a heap-based buffer overflow in the function WritePDBImage of coders/pdb.c, which allows an attacker to cause a denial of service or possibly have unspecified other impact via a crafted image file. This is related to MagickBitStreamMSBWrite in magick/bit_stream.c. (CVE-2019-11505)
In GraphicsMagick from version 1.3.30 to 1.4 snapshot-20190403 Q8, there is a heap-based buffer overflow in the function WriteMATLABImage of coders/mat.c, which allows an attacker to cause a denial of service or possibly have unspecified other impact via a crafted image file. This is related to ExportRedQuantumType in magick/export.c. (CVE-2019-11506)

References

- https://bugs.mageia.org/show_bug.cgi?id=24766

- - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11005

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11006

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11007

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11008

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11009

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11010

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11473

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11474

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11505

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11506

Resolution

MGASA-2019-0187 - Updated graphicsmagick packages fix security vulnerabilities

SRPMS

- 6/core/graphicsmagick-1.3.31-1.5.mga6

Severity
Publication date: 10 Jun 2019
URL: https://advisories.mageia.org/MGASA-2019-0187.html
Type: security
CVE: CVE-2019-11005, CVE-2019-11006, CVE-2019-11007, CVE-2019-11008, CVE-2019-11009, CVE-2019-11010, CVE-2019-11473, CVE-2019-11474, CVE-2019-11505, CVE-2019-11506

Related News

13.Lock StylizedMotherboard Esm H320
1 - 2 min read
Spiral Linux is a Debian-based distribution that offers a range of desktop environments, making it stand out from other Linux distributions. In
32.Lock Code Circular Esm H320
2 - 3 min read
Two critical security vulnerabilities were found in pgAdmin, the open-source administration tool for PostgreSQL . The vulnerabilities assigned
1.Penguin Landscape Esm H320
2 - 3 min read
The recent release of AlmaLinux 9.4 , closely aligned with Red Hat Enterprise Linux (RHEL) 9.4 , presents Linux admins and infosec professionals
11.Locks IsometricPattern Esm H320
2 - 3 min read
The upcoming release of Linux Mint 22 will introduce significant changes, particularly in handling XApp , GNOME applications, and the Software
2.Motherboard Esm H320
2 - 3 min read
German software engineer Lennart Poettering recently presented run0 , a new tool in systemd v256 that aims to address the security concerns
22.Lock ScreenEffect Esm H320
2 - 3 min read
Red Hat recently released its newest enterprise Linux distro, Red Hat Enterprise Linux (RHEL) 9.4 , which introduces several features designed to
8.Locks HexConnections CodeGlobe Esm H320
1 - 2 min read
The latest release of Debian , one of the oldest and most trusted distributions within the Linux ecosystem, redefines security, stability, and
20.Lock AbstractDigital Circular Esm H320
1 - 2 min read
The Ubuntu security team has recently discovered and addressed multiple vulnerabilities in the Apache HTTP Server. The vulnerabilities affected
Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved