Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Ubuntu 20.04 LTS USN-6393-1 Critical: ImageMagick DoS Issue

ubuntu
Calendar Grey September 21, 2023
Dist Ubuntu Esm H88
The latest Ubuntu Security Notice USN-6394-1 deals with vulnerabilities in the libpng library, which may lead to security breaches when manipulating PNG files.
ImageMagick could be made to crash when processing the -help option.

Summary

A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 20.04 LTS (Available with Ubuntu Pro) - Ubuntu 18.04 LTS (Available with Ubuntu Pro) - Ubuntu 16.04 LTS (Available with Ubuntu Pro) - Ubuntu 14.04 LTS (Available with Ubuntu Pro) Summary: ImageMagick could be made to crash when processing the -help option. Software Description: - imagemagick: Image manipulation programs and library Details: It was discovered that ImageMagick did not properly handle memory when processing the -help option. An attacker could potentially use this issue to cause a crash.

Topics%20covered

Topics Covered

security advisory critical DoS ubuntu imagemagick memory handling

Update Instructions

The problem can be corrected by updating your system to the following package versions: Ubuntu 20.04 LTS (Available with Ubuntu Pro):   imagemagick 8:6.9.10.23+dfsg-2.1ubuntu11.9+esm1   imagemagick-6.q16 8:6.9.10.23+dfsg-2.1ubuntu11.9+esm1   imagemagick-6.q16hdri 8:6.9.10.23+dfsg-2.1ubuntu11.9+esm1 Ubuntu 18.04 LTS (Available with Ubuntu Pro):   imagemagick 8:6.9.7.4+dfsg-16ubuntu6.15+esm2   imagemagick-6.q16 8:6.9.7.4+dfsg-16ubuntu6.15+esm2   imagemagick-6.q16hdri           8:6.9.7.4+dfsg-16ubuntu6.15+esm2 Ubuntu 16.04 LTS (Available with Ubuntu Pro):   imagemagick                        8:6.8.9.9-7ubuntu5.16+esm9   imagemagick-6.q16               8:6.8.9.9-7ubuntu5.16+esm9 Ubuntu 14.04 LTS (Available with Ubuntu Pro):   imagemagick                        8:6.7.7.10-6ubuntu3.13+esm6 In general, a standard system update will make all the necessary changes.

References

  https://ubuntu.com/security/notices/USN-6393-1

  CVE-2022-48541

Severity
critical
Lowest
Low
Medium
High
Critical

Ubuntu Security Notice USN-6393-1

Topics%20covered

Topics Covered

security advisory critical DoS ubuntu imagemagick memory handling

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here