14 matches found
Ubuntu: Security Advisory (USN-5190-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-5190-1 graphicsmagick vulnerabilities
It was discovered that GraphicsMagick allowed reading arbitrary files via specially crafted images. An attacker could use this issue to expose sensitive information. This issue only affects Ubuntu 14.04 ESM, Ubuntu 16.04 ESM, and Ubuntu 18.04 ESM. CVE-2019-12921 It was discovered that...
CVE-2019-12921
In GraphicsMagick before 1.3.32, the text filename component allows remote attackers to read arbitrary files via a crafted image because of TranslateTextEx for SVG...
Debian: Security Advisory (DSA-4675-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 4675-1] graphicsmagick security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4675-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 05, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4675-1] graphicsmagick security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4675-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 05, 2020 https://www.debian.org/security/faq -...
openSUSE: Security Advisory for GraphicsMagick (openSUSE-SU-2020:0416-1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Security update for GraphicsMagick (moderate)
openSUSE Security Update: Security update for GraphicsMagick Announcement ID: openSUSE-SU-2020:0429-1 Rating: moderate References: 1167208 1167623 Cross-References: CVE-2019-12921 CVE-2020-10938 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes two vulnerabilities is now...
Security update for GraphicsMagick (moderate)
openSUSE Security Update: Security update for GraphicsMagick Announcement ID: openSUSE-SU-2020:0416-1 Rating: moderate References: 1167208 1167623 Cross-References: CVE-2019-12921 CVE-2020-10938 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available...
openSUSE Security Update : GraphicsMagick (openSUSE-2020-416)
This update for GraphicsMagick fixes the following issues : - CVE-2019-12921: Fixed an issue where text filename components potentially coulf have allowed reading of arbitrary files via TranslateTextEx boo1167208. - CVE-2020-10938: Fixed an integer overflow and resultant heap-based buffer overflo...
[SECURITY] [DLA 2152-1] graphicsmagick security update
Package : graphicsmagick Version : 1.3.20-3+deb8u9 CVE ID : CVE-2019-12921 A vulnerability was discovered in graphicsmagick, a collection of image processing tools, that allows allows an attacker to read arbitrary files via a crafted image because of TranslateTextEx for SVG. For Debian 8 "Jessie"...
UBUNTU-CVE-2019-12921
In GraphicsMagick before 1.3.32, the text filename component allows remote attackers to read arbitrary files via a crafted image because of TranslateTextEx for SVG...
CVE-2019-12921
GraphicsMagick (before 1.3.32) is affected by CVE-2019-12921 where the text filename component could read arbitrary files via TranslateTextEx in SVG processing. OpenSUSE and Debian advisories explicitly reference CVE-2019-12921 alongside CVE-2020-10938, with patches to fix the issues (e.g., updat...
CVE-2019-12921
In GraphicsMagick before 1.3.32, the text filename component allows remote attackers to read arbitrary files via a crafted image because of TranslateTextEx for SVG...