Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

SUSE: 2019:2785-2 Moderate: ImageMagick Denial of Service Fix

suse
Calendar Grey November 14, 2019
Dist Suse Esm H88
This release tackles various vulnerabilities in ImageMagick, enhancing both security and reliability. Keep safe with the most recent updates!
An update that fixes 10 vulnerabilities is now available

Summary

This update for ImageMagick fixes the following issues: Security issues fixed: - CVE-2019-15139: Fixed a denial-of-service vulnerability in ReadXWDImage. (bsc#1146213) - CVE-2019-15140: Fixed a use-after-free bug in the Matlab image parser. (bsc#1146212) - CVE-2019-15141: Fixed a divide-by-zero vulnerability in the MeanShiftImage function. (bsc#1146211) - CVE-2019-14980: Fixed an application crash resulting from a heap-based buffer over-read in WriteTIFFImage. (bsc#1146068) - CVE-2019-16708: Fixed a memory leak in magick/xwindow.c (bsc#1151781). - CVE-2019-16709: Fixed a memory leak in coders/dps.c (bsc#1151782). - CVE-2019-16710: Fixed a memory leak in coders/dot.c (bsc#1151783). - CVE-2019-16711: Fixed a memory leak in Huffman2DEncodeImage in coders/ps2.c (bsc#1151784).

Topics%20covered

Topics Covered

security advisory moderate memory leak denial-of-service ImageMagick SUSE Linux Enterprise

References

#1146068 #1146211 #1146212 #1146213 #1151781

#1151782 #1151783 #1151784 #1151785 #1151786

Cross- CVE-2019-14980 CVE-2019-15139 CVE-2019-15140

CVE-2019-15141 CVE-2019-16708 CVE-2019-16709

CVE-2019-16710 CVE-2019-16711 CVE-2019-16712

CVE-2019-16713

Affected Products:

SUSE Linux Enterprise Workstation Extension 12-SP5

SUSE Linux Enterprise Software Development Kit 12-SP5

SUSE Linux Enterprise Server 12-SP5

https://www.suse.com/security/cve/CVE-2019-14980.html

https://www.suse.com/security/cve/CVE-2019-15139.html

https://www.suse.com/security/cve/CVE-2019-15140.html

https://www.suse.com/security/cve/CVE-2019-15141.html

https://www.suse.com/security/cve/CVE-2019-16708.html

https://www.suse.com/security/cve/CVE-2019-16709.html

Announcement ID: SUSE-SU-2019:2785-2
Rating: moderate

Topics%20covered

Topics Covered

security advisory moderate memory leak denial-of-service ImageMagick SUSE Linux Enterprise

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here