logo
DATABASE RESOURCES PRICING ABOUT US

graphicsmagick - security update

Description

It was discovered that there were two denial of service vulnerabilities in graphicsmagick, a collection of image processing tools: * [CVE-2016-5240](https://security-tracker.debian.org/tracker/CVE-2016-5240) Prevent denial-of-service by detecting and rejecting negative stroke-dasharray arguments which were resulting in an endless loop. * [CVE-2016-5241](https://security-tracker.debian.org/tracker/CVE-2016-5241) Fix divide-by-zero problem if fill or stroke pattern image has zero columns or rows to prevent DoS attack. For Debian 7 Wheezy, this issue has been fixed in graphicsmagick version 1.3.16-1.1+deb7u3. We recommend that you upgrade your graphicsmagick packages.


Affected Software


CPE Name Name Version
graphicsmagick 1.3.16-1.1+deb7u1
graphicsmagick 1.3.16-1.1
graphicsmagick 1.3.16-1.1+deb7u2

Related