Explore top 10 tips to secure your open-source projects now. Read More
×
This update for ImageMagick fixes the following security issue: - CVE-2017-17934: Prevent memory leaks, related to MSLPopImage and ProcessMSLScript, and associated with mishandling of MSLPushImage calls (bsc#1074170). - CVE-2018-16750: Prevent memory leak in the formatIPTCfromBuffer function (bsc#1108283) - CVE-2018-16749: Added missing NULL check in ReadOneJNGImage that allowed an attacker to cause a denial of service (WriteBlob assertion failure and application exit) via a crafted file (bsc#1108282) - CVE-2018-16413: Prevent heap-based buffer over-read in the PushShortPixel function leading to DoS (bsc#1106989). - CVE-2018-16323: ReadXBMImage left data uninitialized when processing an XBM file that has a negative pixel value. If the affected code was used
#1074170 #1106855 #1106989 #1107604 #1107609
#1107612 #1107616 #1108282 #1108283 #1110746
#1110747 #1111069 #1111072
Cross- CVE-2017-17934 CVE-2018-16323 CVE-2018-16413
CVE-2018-16642 CVE-2018-16643 CVE-2018-16644
CVE-2018-16645 CVE-2018-16749 CVE-2018-16750
CVE-2018-17965 CVE-2018-17966 CVE-2018-18016
CVE-2018-18024
Affected Products:
SUSE Linux Enterprise Software Development Kit 11-SP4
SUSE Linux Enterprise Server 11-SP4
SUSE Linux Enterprise Debuginfo 11-SP4
https://www.suse.com/security/cve/CVE-2017-17934.html
https://www.suse.com/security/cve/CVE-2018-16323.html
https://www.suse.com/security/cve/CVE-2018-16413.html
https://www.suse.com/security/cve/CVE-2018-16642.html
https://www.suse.com/security/cve/CVE-2018-16643.html
Get the latest Linux and open source security news straight to your inbox.