Explore top 10 tips to secure your open-source projects now. Read More
×
This update for ImageMagick fixes the following issues:
* CVE-2017-14989: use-after-free in RenderFreetype in
MagickCore/annotate.c could lead to denial of service [bsc#1061254]
* CVE-2017-14682: GetNextToken in MagickCore/token.c heap buffer
overflow could lead to denial of service [bsc#1060176]
* Memory leak in WriteINLINEImage in coders/inline.c could lead to
denial of service [bsc#1052744]
* CVE-2017-14607: out of bounds read flaw related to ReadTIFFImagehas
could possibly disclose potentially sensitive memory [bsc#1059778]
* CVE-2017-11640: NULL pointer deref in WritePTIFImage() in
coders/tiff.c [bsc#1050632]
* CVE-2017-14342: a memory exhaustion vulnerability in ReadWPGImage in
coders/wpg.c could lead to denial of service [bsc#1058485]
* CVE-2017-14341: Infinite loop in the ReadWPGImage function
[bsc#1058637]
* CVE-2017-16546: problem in the function ReadWPGImage in coders/wpg.c
...
Read the Full AdvisoryPatch Instructions:
To install this openSUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:
- openSUSE Leap 42.3:
zypper in -t patch openSUSE-2017-1413=1
- openSUSE Leap 42.2:
zypper in -t patch openSUSE-2017-1413=1
To bring your system up-to-date, use "zypper patch".
- openSUSE Leap 42.3 (i586 x86_64):
ImageMagick-6.8.8.1-40.1
ImageMagick-debuginfo-6.8.8.1-40.1
ImageMagick-debugsource-6.8.8.1-40.1
ImageMagick-devel-6.8.8.1-40.1
ImageMagick-extra-6.8.8.1-40.1
ImageMagick-extra-debuginfo-6.8.8.1-40.1
libMagick++-6_Q16-3-6.8.8.1-40.1
libMagick++-6_Q16-3-debuginfo-6.8.8.1-40.1
libMagick++-devel-6.8.8.1-40.1
libMagickCore-6_Q16-1-6.8.8.1-40.1
libMagickCore-6_Q16-1-debuginfo-6.8.8.1-40.1
libMagickWand-6_Q16-1-6.8.8.1-40.1
libMagickWand-6_Q16-1-debuginfo-6.8.8.1-40.1
perl-PerlMagick-6.8.8.1-40.1
perl-PerlMagick-debuginfo-6.8.8.1-40.1
- openSUSE Leap 42.3 (noarch):
ImageMagick-doc-6.8.8.1-40.1
- openSUSE Leap 42.3 (x86_64):
ImageMagick-devel-32bit-6.8.8.1-40.1
libMagick++-6_Q16-3-32bit-6.8.8.1-40.1
libMagick++-6_Q16-3-debuginfo-32bit-6.8.8.1-40.1
libMagick++-devel-32bit-6.8.8.1-40.1
libMagickCore-6_Q16-1-32bit-6.8.8.1-40.1
libMagickCore-6_Q16-1-debuginfo-32bit-6.8.8.1-40.1
libMagickWand-6_Q16-1-32bit-6.8.8.1-40.1
libMagickWand-6_Q16-1-debuginfo-32bit-6.8.8.1-40.1
- openSUSE Leap...
Read the Full Advisoryhttps://www.suse.com/security/cve/CVE-2017-11188.html
https://www.suse.com/security/cve/CVE-2017-11478.html
https://www.suse.com/security/cve/CVE-2017-11523.html
https://www.suse.com/security/cve/CVE-2017-11527.html
https://www.suse.com/security/cve/CVE-2017-11535.html
https://www.suse.com/security/cve/CVE-2017-11640.html
https://www.suse.com/security/cve/CVE-2017-11752.html
https://www.suse.com/security/cve/CVE-2017-12140.html
https://www.suse.com/security/cve/CVE-2017-12435.html
https://www.suse.com/security/cve/CVE-2017-12587.html
https://www.suse.com/security/cve/CVE-2017-12644.html
https://www.suse.com/security/cve/CVE-2017-12662.html
https://www.suse.com/security/cve/CVE-2017-12669.html
https://www.suse.com/security/cve/CVE-2017-12983.html
https://www.suse.com/security/cve/CVE-2017-13134.html
https://www.suse.com/security/cve/CVE-2017-13769.html
https://www.suse.com/security/cve/CVE-2017-14138.html
https://www.suse.com/security/cve/CVE-2017-14172.html
https://www.suse.com/security/cve/CVE-2017-141...
Read the Full AdvisoryGet the latest Linux and open source security news straight to your inbox.