7 matches found
USN-5974-1: GraphicsMagick vulnerabilities
It was discovered that GraphicsMagick was not properly performing bounds checks when processing TGA image files, which could lead to a heap buffer overflow. If a user or automated system were tricked into processing a specially crafted TGA image file, an attacker could possibly use this issue to...
Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS : GraphicsMagick vulnerabilities (USN-5974-1)
The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5974-1 advisory. It was discovered that GraphicsMagick was not properly performing bounds checks when processing TGA image files, which could lead...
openSUSE Security Update : GraphicsMagick (openSUSE-2019-1)
This update for GraphicsMagick fixes the following issues : Security vulnerabilities fixed : - CVE-2018-20184: Fixed heap-based buffer overflow in the WriteTGAImage function of tga.c bsc1119822 - CVE-2018-20189: Fixed denial of service vulnerability in ReadDIBImage function of coders/dib.c...
Security update for GraphicsMagick (moderate)
This update for GraphicsMagick fixes the following issues: Security issues fixed: - CVE-2018-20184: Fixed heap-based buffer overflow in the WriteTGAImage function of tga.c bsc1119822 - CVE-2018-20189: Fixed denial of service vulnerability in ReadDIBImage function of coders/dib.c bsc1119790...
[SECURITY] [DLA 1619-1] graphicsmagick security update
Package : graphicsmagick Version : 1.3.20-3+deb8u5 CVE ID : CVE-2018-20184 CVE-2018-20185 CVE-2018-20189 Debian Bug : 916752 916719 916721 Multiple vulnerabilities have been found in GraphicsMagick, the image processing system. CVE-2018-20184 The WriteTGAImage function tga.c is affected by a...
Debian: Security Advisory (DLA-1619-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2018-20189
GraphicsMagick 1.3.31 is affected by CVE-2018-20189 in the ReadDIBImage function (coders/dib.c). A crafted DIB image that exploits direct pixel values with colormapping (not supported beyond 8-bits/sample) can trigger missing indexes initialization, causing a crash and denial of service. No furth...