Lucene search

K
suseSuseOPENSUSE-SU-2019:2519-1
HistoryNov 16, 2019 - 12:00 a.m.

Security update for ImageMagick (moderate)

2019-11-1600:00:00
lists.opensuse.org
72

EPSS

0.033

Percentile

91.5%

An update that fixes 11 vulnerabilities is now available.

Description:

This update for ImageMagick fixes the following issues:

Security issues fixed:

  • CVE-2019-15139: Fixed a denial-of-service vulnerability in ReadXWDImage
    (bsc#1146213).
  • CVE-2019-15140: Fixed a use-after-free bug in the Matlab image parser
    (bsc#1146212).
  • CVE-2019-15141: Fixed a divide-by-zero vulnerability in the
    MeanShiftImage function (bsc#1146211).
  • CVE-2019-14980: Fixed an application crash resulting from a heap-based
    buffer over-read in WriteTIFFImage (bsc#1146068).
  • CVE-2019-14981: Fixed a use after free in the UnmapBlob function
    (bsc#1146065).
  • CVE-2019-16708: Fixed a memory leak in magick/xwindow.c (bsc#1151781).
  • CVE-2019-16709: Fixed a memory leak in coders/dps.c (bsc#1151782).
  • CVE-2019-16710: Fixed a memory leak in coders/dot.c (bsc#1151783).
  • CVE-2019-16711: Fixed a memory leak in Huffman2DEncodeImage in
    coders/ps2.c (bsc#1151784).
  • CVE-2019-16712: Fixed a memory leak in Huffman2DEncodeImage in
    coders/ps3.c (bsc#1151785).
  • CVE-2019-16713: Fixed a memory leak in coders/dot.c (bsc#1151786).

This update was imported from the SUSE:SLE-15:Update update project.

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.

Alternatively you can run the command listed for your product:

  • openSUSE Leap 15.0:

    zypper in -t patch openSUSE-2019-2519=1

OSVersionArchitecturePackageVersionFilename
openSUSE Leap15.0i586< - openSUSE Leap 15.0 (i586 x86_64):- openSUSE Leap 15.0 (i586 x86_64):.i586.rpm
openSUSE Leap15.0x86_64< - openSUSE Leap 15.0 (i586 x86_64):- openSUSE Leap 15.0 (i586 x86_64):.x86_64.rpm
openSUSE Leap15.0noarch< - openSUSE Leap 15.0 (noarch):- openSUSE Leap 15.0 (noarch):.noarch.rpm
openSUSE Leap15.0x86_64< - openSUSE Leap 15.0 (x86_64):- openSUSE Leap 15.0 (x86_64):.x86_64.rpm