Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 580
Alerts This Week
Warning Icon 1 580

SUSE: 2021:0153-1 Moderate: ImageMagick Update Fixes 34 Issues

suse
Calendar Grey January 15, 2021
Dist Suse Esm H88
SUSE publishes a security notice for ImageMagick tackling 34 vulnerabilities of moderate impact. Users are urged to apply the update.
An update that fixes 34 vulnerabilities is now available

Summary

This update for ImageMagick fixes the following issues: - CVE-2020-25664: Fixed a heap-based buffer overflow in PopShortPixel (bsc#1179202). - CVE-2020-25665: Fixed a heap-based buffer overflow in WritePALMImage (bsc#1179208). - CVE-2020-25666: Fixed an outside the range of representable values of type 'int' and signed integer overflow (bsc#1179212). - CVE-2020-25674: Fixed a heap-based buffer overflow in WriteOnePNGImage (bsc#1179223). - CVE-2020-25675: Fixed an outside the range of representable values of type 'long' and integer overflow (bsc#1179240). - CVE-2020-25676: Fixed an outside the range of representable values of type 'long' and integer overflow at MagickCore/pixel.c (bsc#1179244). - CVE-2020-27750: Fixed a division by zero in MagickCore/colorspace-private.h (bsc#1179260).

References

#1179202 #1179208 #1179212 #1179221 #1179223

#1179240 #1179244 #1179260 #1179268 #1179269

#1179276 #1179278 #1179281 #1179285 #1179311

#1179312 #1179313 #1179315 #1179317 #1179321

#1179322 #1179327 #1179333 #1179336 #1179338

#1179339 #1179343 #1179345 #1179346 #1179347

#1179361 #1179362 #1179397 #1179753

Cross- CVE-2020-25664 CVE-2020-25665 CVE-2020-25666

CVE-2020-25674 CVE-2020-25675 CVE-2020-25676

CVE-2020-27750 CVE-2020-27751 CVE-2020-27752

CVE-2020-27753 CVE-2020-27754 CVE-2020-27755

CVE-2020-27756 CVE-2020-27757 CVE-2020-27758

CVE-2020-27759 CVE-2020-27760 CVE-2020-27761

CVE-2020-27762 CVE-2020-27763 CVE-2020-27764

CVE-2020-27765 CVE-2020-27766 CVE-2020-27767

CVE-2020-27768 CVE-2020-27769 CVE-2020-27770

...

Read the Full Advisory

Announcement ID: SUSE-SU-2021:0153-1
Rating: moderate

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.