EUVD-2017-5615

Malware in sbrugna...

GraphicsMagick Use-after-free (CVE-2017-11403)

A use-after-free vulnerability exists in GraphicsMagick. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

SUSE: Security Advisory (SUSE-SU-2017:2199-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 16.04 LTS : GraphicsMagick vulnerabilities (USN-4206-1)

The remote Ubuntu 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4206-1 advisory. It was discovered that GraphicsMagick incorrectly handled certain image files. An attacker could possibly use this issue to cause a denial of service...

Ubuntu: Security Advisory (USN-4206-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-4206-1: GraphicsMagick vulnerabilities

It was discovered that GraphicsMagick incorrectly handled certain image files. An attacker could possibly use this issue to cause a denial of service. CVE-2017-10794, CVE-2017-10799, CVE-2017-11102, CVE-2017-11140, CVE-2017-11403, CVE-2017-11636, CVE-2017-11637, CVE-2017-13147, CVE-2017-14042,...

USN-4206-1 graphicsmagick vulnerabilities

It was discovered that GraphicsMagick incorrectly handled certain image files. An attacker could possibly use this issue to cause a denial of service. CVE-2017-10794, CVE-2017-10799, CVE-2017-11102, CVE-2017-11140, CVE-2017-11403, CVE-2017-11636, CVE-2017-11637, CVE-2017-13147, CVE-2017-14042,...

CVE-2017-18220

The ReadOneJNGImage and ReadJNGImage functions in coders/png.c in GraphicsMagick 1.3.26 allow remote attackers to cause a denial of service magick/blob.c CloseBlob use-after-free or possibly have unspecified other impact via a crafted file, a related issue to CVE-2017-11403...

[ASA-201801-7] graphicsmagick: multiple issues

Arch Linux Security Advisory ASA-201801-7 ========================================= Severity: High Date : 2018-01-08 CVE-ID : CVE-2017-11403 CVE-2017-12935 CVE-2017-12936 CVE-2017-12937 CVE-2017-13063 CVE-2017-13064 CVE-2017-13065 CVE-2017-13066 CVE-2017-13134 CVE-2017-13776 CVE-2017-13777...

SUSE SLED12 / SLES12 Security Update : ImageMagick (SUSE-SU-2017:2199-1)

This update for ImageMagick fixes the following issues: Security issues fixed : - CVE-2017-9439: A memory leak was found in the function ReadPDBImage incoders/pdb.c bsc1042826 - CVE-2017-9440: A memory leak was found in the function ReadPSDChannelin coders/psd.c bsc1042812 - CVE-2017-9501: An...

SUSE-SU-2017:2199-1 Security update for ImageMagick

This update for ImageMagick fixes the following issues: Security issues fixed: - CVE-2017-9439: A memory leak was found in the function ReadPDBImage incoders/pdb.c bsc1042826 - CVE-2017-9440: A memory leak was found in the function ReadPSDChannelin coders/psd.c bsc1042812 - CVE-2017-9501: An...

SUSE SLES11 Security Update : ImageMagick (SUSE-SU-2017:2176-1)

This update for ImageMagick fixes the following issues: Security issues fixed : - CVE-2017-9439: A memory leak was found in the function ReadPDBImage incoders/pdb.c bsc1042826 - CVE-2017-9501: An assertion failure could cause a denial of service via a crafted file bsc1043289 - CVE-2017-11403:...

Updated graphicsmagick packages fix security vulnerabilities

New stable upstream release including security fixes for CVE-2016-7800, CVE-2016-7996, CVE-2016-7997, CVE-2016-8682, CVE-2016-8683, CVE-2016-8684, CVE-2016-9830, CVE-2017-6335, CVE-2017-8350, CVE-2017-10794, CVE-2017-10799, CVE-2017-10800, CVE-2017-11403 and possibly several other security issues...

Fedora 24 : GraphicsMagick (2017-758fafed81)

Security fix for CVE-2017-11403 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 7030...

Fedora 25 : GraphicsMagick (2017-6c52e2d731)

Security fix for CVE-2017-11403 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 7030...

Fedora 26 : GraphicsMagick (2017-0446b53fd8)

Security fix for CVE-2017-11403 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 7030...

CVE-2017-11403

GraphicsMagick 1.3.26 is affected by CVE-2017-11403 due to an out-of-order CloseBlob in ReadMNGImage (png.c), causing a use-after-free via a crafted MNG file. Related entry CVE-2017-18220 describes a similar read path issue in ReadOnePNGImage/ReadJNGImage, linked to the same blob handling. Public...