Security update for GraphicsMagick (moderate)

2019-05-09T15:09:13
ID OPENSUSE-SU-2019:1354-1
Type suse
Reporter Suse
Modified 2019-05-09T15:09:13

Description

This update for GraphicsMagick fixes the following issues:

Security issues fixed:

  • CVE-2019-11506: Fixed a heap-based buffer overflow in the function WriteMATLABImage (boo#1133498).
  • CVE-2019-11505: Fixed a heap-based buffer overflow in the function WritePDBImage (boo#1133501).

The following fixes where modified and refreshed:

  • CVE-2019-11008: Fixed a heap-based buffer overflow in the function WriteXWDImage (boo#1132054).
  • CVE-2019-11009: Fixed a heap-based buffer over-read in the function ReadXWDImage (boo#1132053).
  • CVE-2019-11473: Fixed an out-of-bounds read leading to a possible denial of service in coders/xwd.c (boo#1133203).
  • CVE-2019-11474: Fixed a floating-point exception leading to a possible denial of service in coders/xwd.c (boo#1133202).