SUSE Package Hub - openSUSE-2019-1437

Update Info

openSUSE-2019-1437

Security update for GraphicsMagick

Type: security

Severity: moderate

Issued: 2019-05-22

Description:

This update for GraphicsMagick fixes the following issues:

Security issues fixed:

- CVE-2019-11506: Fixed a heap-based buffer overflow in the function WriteMATLABImage (boo#1133498).
- CVE-2019-11505: Fixed a heap-based buffer overflow in the function WritePDBImage (boo#1133501).

The following fixes where modified and refreshed:

- CVE-2019-11008: Fixed a heap-based buffer overflow in the function WriteXWDImage (boo#1132054).
- CVE-2019-11009: Fixed a heap-based buffer over-read in the function ReadXWDImage (boo#1132053).
- CVE-2019-11473: Fixed an out-of-bounds read leading to a possible denial of service in coders/xwd.c (boo#1133203).
- CVE-2019-11474: Fixed a floating-point exception leading to a possible denial of service in coders/xwd.c (boo#1133202). 

This update was imported from the openSUSE:Leap:15.0:Update update project.

References

Packages

GraphicsMagick-1.3.29-bp150.2.21.1