Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 496
Alerts This Week
Warning Icon 1 496

openSUSE Leap 42.3: 2019:0016-1 Moderate: GraphicsMagick Infinite Loop

opensuse
Calendar Grey January 11, 2019
Scroller Opensuse
The new GraphicsMagick update for openSUSE resolves a moderate security issue; the release notes feature comprehensive patch guidance and details on affected versions.
An update that fixes one vulnerability is now available.

Description

This update for GraphicsMagick fixes the following issue:

Security issue fixed:

- CVE-2018-20467: Fixed infinite loop in coders/bmp.c (boo#1120381)

Patch

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods

like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Leap 42.3:

zypper in -t patch openSUSE-2019-16=1

Package List

- openSUSE Leap 42.3 (i586 x86_64):

GraphicsMagick-1.3.25-123.1

GraphicsMagick-debuginfo-1.3.25-123.1

GraphicsMagick-debugsource-1.3.25-123.1

GraphicsMagick-devel-1.3.25-123.1

libGraphicsMagick++-Q16-12-1.3.25-123.1

libGraphicsMagick++-Q16-12-debuginfo-1.3.25-123.1

libGraphicsMagick++-devel-1.3.25-123.1

libGraphicsMagick-Q16-3-1.3.25-123.1

libGraphicsMagick-Q16-3-debuginfo-1.3.25-123.1

libGraphicsMagick3-config-1.3.25-123.1

libGraphicsMagickWand-Q16-2-1.3.25-123.1

libGraphicsMagickWand-Q16-2-debuginfo-1.3.25-123.1

perl-GraphicsMagick-1.3.25-123.1

perl-GraphicsMagick-debuginfo-1.3.25-123.1

References

https://www.suse.com/security/cve/CVE-2018-20467.html

https://bugzilla.suse.com/1120381

--

Announcement ID: openSUSE-SU-2019:0016-1
Rating: moderate
Affected Products: openSUSE Leap 42.3

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.