Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 569
Alerts This Week
Warning Icon 1 569

openSUSE Leap 42.3 openSUSE-SU-2018:2439-1 low: GraphicsMagick Memory Leak

opensuse
Calendar Grey August 19, 2018
Scroller Opensuse
openSUSE Security Notification: GraphicsMagick patch addressing memory leak issue, Announcement ID: openSUSE-SU-2018:2450-1.
An update that fixes one vulnerability is now available.

Description

This update for GraphicsMagick fixes the following issues:

The following security issue was fixed:

- CVE-2018-14435: Fixed a memory leak in DecodeImage in coders/pcd.c

(boo#1102007)

Patch

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods

like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Leap 42.3:

zypper in -t patch openSUSE-2018-906=1

Package List

- openSUSE Leap 42.3 (i586 x86_64):

GraphicsMagick-1.3.25-96.2

GraphicsMagick-debuginfo-1.3.25-96.2

GraphicsMagick-debugsource-1.3.25-96.2

GraphicsMagick-devel-1.3.25-96.2

libGraphicsMagick++-Q16-12-1.3.25-96.2

libGraphicsMagick++-Q16-12-debuginfo-1.3.25-96.2

libGraphicsMagick++-devel-1.3.25-96.2

libGraphicsMagick-Q16-3-1.3.25-96.2

libGraphicsMagick-Q16-3-debuginfo-1.3.25-96.2

libGraphicsMagick3-config-1.3.25-96.2

libGraphicsMagickWand-Q16-2-1.3.25-96.2

libGraphicsMagickWand-Q16-2-debuginfo-1.3.25-96.2

perl-GraphicsMagick-1.3.25-96.2

perl-GraphicsMagick-debuginfo-1.3.25-96.2

References

https://www.suse.com/security/cve/CVE-2018-14435.html

https://bugzilla.suse.com/1102007

--

Severity
low
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2018:2439-1
Rating: low
Affected Products: openSUSE Leap 42.3

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.