2700 matches found
graphicsmagick: multiple issues
A last instance of CVE-2016-2317 heap buffer overflow in the MVG rendering code also impacts SVG. This problem was originally reported by Gustavo Grieco. 2. A possible heap overflow of the EscapeParenthesis function. While I was not able to reproduce it for myself, the implementation is replaced...
openSUSE Security Update : GraphicsMagick (openSUSE-2016-984)
This update for GraphicsMagick fixes the following issues : - CVE-2014-9805: SEGV due to a corrupted pnm file boo983752 - CVE-2016-5240: SVG converting issue resulting in DoS endless loop boo983309 - CVE-2016-5241: Arithmetic exception div by 0 in SVG conversion boo983455 - CVE-2014-9846: Overflo...
openSUSE: Security Advisory for GraphicsMagick (openSUSE-SU-2016:2073-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security update for GraphicsMagick (important)
This update for GraphicsMagick fixes the following issues: - CVE-2014-9805: SEGV due to a corrupted pnm file boo983752 - CVE-2016-5240: SVG converting issue resulting in DoS endless loop boo983309 - CVE-2016-5241: Arithmetic exception div by 0 in SVG conversion boo983455 - CVE-2014-9846: Overflow...
Debian DLA-547-2 : graphicsmagick regression update
The fix for CVE-2016-5240 was improperly applied which resulted in GraphicsMagick crashing instead of entering an infinite loop with the given proof of concept. Furthermore, the original announcement mistakently used the identifier 'DLA 574-1' instead of the correct one, 'DLA 547-1'. For Debian 7...
MGASA-2016-0252 Updated graphicsmagick packages fix security vulnerability
A read out-of-bound in the parsing of gif files using GraphicsMagick CVE-2015-8808. - Infinite loop caused by converting a circularly defined svg file CVE-2016-5240. - Fix another case of CVE-2016-2317 heap buffer overflow in the MVG rendering code also impacts SVG. - arithmetic exception...
Updated graphicsmagick packages fix security vulnerability
- A read out-of-bound in the parsing of gif files using GraphicsMagick CVE-2015-8808. - Infinite loop caused by converting a circularly defined svg file CVE-2016-5240. - Fix another case of CVE-2016-2317 heap buffer overflow in the MVG rendering code also impacts SVG. - arithmetic exception...
Fedora 23 : GraphicsMagick (2016-7a878ed298)
New GraphicsMagick bugfix/security release, see also: http://www.graphicsmagick.org/NEWS.htmlmay-30-2016 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as...
Fedora 22 : GraphicsMagick (2016-40ccaff4d1)
New GraphicsMagick bugfix/security release, see also: http://www.graphicsmagick.org/NEWS.htmlmay-30-2016 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as...
Fedora 24 : GraphicsMagick (2016-0d90ead5d7)
New GraphicsMagick bugfix/security release, see also: http://www.graphicsmagick.org/NEWS.htmlmay-30-2016 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as...
CVE-2015-8808
The DecodeImage function in coders/gif.c in GraphicsMagick 1.3.18 allows remote attackers to cause a denial of service uninitialized memory access via a crafted GIF file...
CVE-2015-8808
The DecodeImage function in coders/gif.c in GraphicsMagick 1.3.18 allows remote attackers to cause a denial of service uninitialized memory access via a crafted GIF file...
DEBIAN-CVE-2015-8808
The DecodeImage function in coders/gif.c in GraphicsMagick 1.3.18 allows remote attackers to cause a denial of service uninitialized memory access via a crafted GIF file...
UBUNTU-CVE-2015-8808
The DecodeImage function in coders/gif.c in GraphicsMagick 1.3.18 allows remote attackers to cause a denial of service uninitialized memory access via a crafted GIF file...
CVE-2015-8808
The DecodeImage function in coders/gif.c in GraphicsMagick 1.3.18 allows remote attackers to cause a denial of service uninitialized memory access via a crafted GIF file...
CVE-2015-8808
The DecodeImage function in coders/gif.c in GraphicsMagick 1.3.18 allows remote attackers to cause a denial of service uninitialized memory access via a crafted GIF file...
CVE-2015-8808
CVE-2015-8808 affects GraphicsMagick (GIF decoding path). The DecodeImage function in coders/gif.c can trigger an out-of-bounds read on crafted GIFs, leading to denial of service via uninitialized memory access. The issue is tied to the GIF parser in GraphicsMagick 1.3.18 and has been addressed i...
CVE-2015-8808
The DecodeImage function in coders/gif.c in GraphicsMagick 1.3.18 allows remote attackers to cause a denial of service uninitialized memory access via a crafted GIF file...
F5 Networks BIG-IP : GraphicsMagick vulnerability (K82747025)
The OpenBlob function in blob.c in GraphicsMagick before 1.3.24 and ImageMagick allows remote attackers to execute arbitrary code via a | pipe character at the start of a filename. CVE-2016-5118 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...
[SECURITY] [DLA 574-1] graphicsmagick security update
Package : graphicsmagick Version : 1.3.16-1.1+deb7u3 CVE IDs : 2016-5240 2016-5241 It was discovered that there were two denial of service vulnerabilities in graphicsmagick, a collection of image processing tools: CVE-2016-5240: Prevent denial-of-service by detecting and rejecting negative...