Alerts This Week
Warning Icon 1 916
Alerts This Week
Warning Icon 1 916

Mageia: 2020-0473 Moderate: ImageMagick Buffer Overflow Resolution

mageia
Calendar Grey December 29, 2020
Dist Mageia Esm H88
A recent update for GraphicsMagick has resolved a critical heap-based buffer overflow vulnerability in Mageia. It is advisable to verify the installation of the security patch immediately.
GraphicsMagick through 1.3.35 has a heap-based buffer overflow in ReadMNGImage in coders/png.c (CVE-2020-12672)

Summary

GraphicsMagick through 1.3.35 has a heap-based buffer overflow in ReadMNGImage in coders/png.c (CVE-2020-12672).

References

- https://bugs.mageia.org/show_bug.cgi?id=26751

- - https://lists.debian.org/debian-lts-announce/2020/06/msg00004.html

- https://www.cve.org/CVERecord?id=CVE-2020-12672

Topics%20covered

Topics Covered

security advisory buffer overflow heap corruption moderate severity heap overflow graphicsmagick GraphicsMagick Mageia mageia coders PNG

Resolution

SRPMS

- 7/core/graphicsmagick-1.3.35-1.1.mga7

Publication date: 29 Dec 2020
URL: https://advisories.mageia.org/MGASA-2020-0472.html
Type: security
CVE: CVE-2020-12672

Topics%20covered

Topics Covered

security advisory buffer overflow heap corruption moderate severity heap overflow graphicsmagick GraphicsMagick Mageia mageia coders PNG

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here