Oval Definition:oval:org.opensuse.security:def:56232
Revision Date:2020-12-01Version:1
Title:Security update for ImageMagick (Important)
Description:

This update for ImageMagick fixes the following issues:

* CVE-2017-14989: use-after-free in RenderFreetype in MagickCore/annotate.c could lead to denial of service [bsc#1061254] * CVE-2017-14682: GetNextToken in MagickCore/token.c heap buffer overflow could lead to denial of service [bsc#1060176] * Memory leak in WriteINLINEImage in coders/inline.c could lead to denial of service [bsc#1052744] * CVE-2017-14607: out of bounds read flaw related to ReadTIFFImagehas could possibly disclose potentially sensitive memory [bsc#1059778] * CVE-2017-11640: NULL pointer deref in WritePTIFImage() in coders/tiff.c [bsc#1050632] * CVE-2017-14342: a memory exhaustion vulnerability in ReadWPGImage in coders/wpg.c could lead to denial of service [bsc#1058485] * CVE-2017-14341: Infinite loop in the ReadWPGImage function [bsc#1058637] * CVE-2017-16546: problem in the function ReadWPGImage in coders/wpg.c could lead to denial of service [bsc#1067181] * CVE-2017-16545: The ReadWPGImage function in coders/wpg.c in validation problems could lead to denial of service [bsc#1067184] * CVE-2017-16669: problem in coders/wpg.c could allow remote attackers to cause a denial of service via crafted file [bsc#1067409] * CVE-2017-14175: Lack of End of File check could lead to denial of service [bsc#1057719] * CVE-2017-14138: memory leak vulnerability in ReadWEBPImage in coders/webp.c could lead to denial of service [bsc#1057157] * CVE-2017-13769: denial of service issue in function WriteTHUMBNAILImage in coders/thumbnail.c [bsc#1056432] * CVE-2017-13134: a heap-based buffer over-read was found in thefunction SFWScan in coders/sfw.c, which allows attackers to cause adenial of service via a crafted file. [bsc#1055214] * CVE-2017-15217: memory leak in ReadSGIImage in coders/sgi.c [bsc#1062750] * CVE-2017-11478: ReadOneDJVUImage in coders/djvu.c in ImageMagick allows remote attackers to cause a DoS [bsc#1049796] * CVE-2017-15930: Null Pointer dereference while transfering JPEG scanlines could lead to denial of service [bsc#1066003] * CVE-2017-12983: Heap-based buffer overflow in the ReadSFWImage function in coders/sfw.c inImageMagick 7.0.6-8 allows remote attackers to cause a denial of service [bsc#1054757] * CVE-2017-14531: memory exhaustion issue in ReadSUNImage incoders/sun.c. [bsc#1059666] * CVE-2017-12435: Memory exhaustion in ReadSUNImage in coders/sun.c, which allows attackers to cause denial of service [bsc#1052553] * CVE-2017-12587: User controlable large loop in the ReadPWPImage in coders\pwp.c could lead to denial of service [bsc#1052450] * CVE-2017-11523: ReadTXTImage in coders/txt.c allows remote attackers to cause a denial of service [bsc#1050083] * CVE-2017-14173: unction ReadTXTImage is vulnerable to a integer overflow that could lead to denial of service [bsc#1057729] * CVE-2017-11188: ImageMagick: The ReadDPXImage function in codersdpx.c in ImageMagick 7.0.6-0 has a largeloop vulnerability that can cause CPU exhaustion via a crafted DPX file, relatedto lack of an EOF check. [bnc#1048457] * CVE-2017-11527: ImageMagick: ReadDPXImage in coders/dpx.c allows remote attackers to cause DoS [bnc#1050116] * CVE-2017-11535: GraphicsMagick, ImageMagick: Heap-based buffer over-read in WritePSImage() in coders/ps.c [bnc#1050139] * CVE-2017-11752: ImageMagick: ReadMAGICKImage in coders/magick.c allows to cause DoS [bnc#1051441] * CVE-2017-12140: ImageMagick: ReadDCMImage in codersdcm.c has a ninteger signedness error leading to excessive memory consumption [bnc#1051847] * CVE-2017-12669: ImageMagick: Memory leak in WriteCALSImage in coders/cals.c [bnc#1052689] * CVE-2017-12662: GraphicsMagick, ImageMagick: Memory leak in WritePDFImage in coders/pdf.c [bnc#1052758] * CVE-2017-12644: ImageMagick: Memory leak in ReadDCMImage in codersdcm.c [bnc#1052764] * CVE-2017-14172: ImageMagick: Lack of end of file check in ReadPSImage() could lead to a denial of service [bnc#1057730] * CVE-2017-14733: GraphicsMagick: Heap overflow on ReadRLEImage in coders/rle.c could lead to denial of service [bnc#1060577]

Family:unixClass:patch
Status:Reference(s):1004959
1034849
1036244
1048457
1049796
1050083
1050116
1050139
1050632
1051441
1051847
1052450
1052553
1052689
1052744
1052758
1052764
1054757
1055214
1056432
1057157
1057719
1057729
1057730
1058485
1058637
1059666
1059778
1060176
1060577
1061254
1062750
1063671
1064392
1066003
1066471
1066472
1067181
1067184
1067409
1072648
1081557
1084632
1168994
1173812
1174463
1174519
1174570
1175049
812259
855062
867583
899908
902606
924919
935087
937261
937444
938577
940338
940946
941363
942476
943989
944749
945649
947953
949440
949936
950292
951199
951392
951615
952579
952976
954992
955118
955354
955654
956514
956708
957525
957988
957990
958463
958886
958951
958963
959090
959146
959190
959257
959364
959399
959436
959463
959629
960155
960221
960227
960281
960300
961202
961257
961500
961509
961516
961588
961971
962336
962356
962788
962965
963449
963572
963765
963767
963825
964230
964821
965344
965840
CVE-2009-3627
CVE-2011-1831
CVE-2011-1832
CVE-2011-1833
CVE-2011-1834
CVE-2011-1835
CVE-2011-1836
CVE-2011-1837
CVE-2012-2812
CVE-2012-2813
CVE-2012-2814
CVE-2012-2836
CVE-2012-2837
CVE-2012-2840
CVE-2012-2841
CVE-2013-0262
CVE-2013-0263
CVE-2013-1991
CVE-2013-2000
CVE-2013-2001
CVE-2013-7446
CVE-2014-3540
CVE-2014-8962
CVE-2014-9028
CVE-2015-0272
CVE-2015-3225
CVE-2015-5707
CVE-2015-7550
CVE-2015-7552
CVE-2015-7799
CVE-2015-8215
CVE-2015-8539
CVE-2015-8543
CVE-2015-8550
CVE-2015-8551
CVE-2015-8569
CVE-2015-8575
CVE-2015-8660
CVE-2015-8767
CVE-2015-8785
CVE-2016-0723
CVE-2016-2069
CVE-2017-11188
CVE-2017-11478
CVE-2017-11523
CVE-2017-11527
CVE-2017-11535
CVE-2017-11640
CVE-2017-11752
CVE-2017-12140
CVE-2017-12435
CVE-2017-12587
CVE-2017-12644
CVE-2017-12662
CVE-2017-12669
CVE-2017-12983
CVE-2017-13080
CVE-2017-13134
CVE-2017-13769
CVE-2017-14138
CVE-2017-14172
CVE-2017-14173
CVE-2017-14175
CVE-2017-14341
CVE-2017-14342
CVE-2017-14531
CVE-2017-14607
CVE-2017-14682
CVE-2017-14733
CVE-2017-14989
CVE-2017-15217
CVE-2017-15649
CVE-2017-15930
CVE-2017-16545
CVE-2017-16546
CVE-2017-16669
CVE-2017-18190
CVE-2017-3289
CVE-2017-3509
CVE-2017-3511
CVE-2017-3512
CVE-2017-3514
CVE-2017-3526
CVE-2017-3533
CVE-2017-3539
CVE-2017-3544
CVE-2017-8422
CVE-2020-10713
CVE-2020-14308
CVE-2020-14309
CVE-2020-14310
CVE-2020-14311
CVE-2020-15706
CVE-2020-15707
SUSE-SU-2016:0282-1
SUSE-SU-2016:0585-1
SUSE-SU-2017:1335-1
SUSE-SU-2017:1400-1
SUSE-SU-2017:3148-1
SUSE-SU-2017:3388-1
SUSE-SU-2018:0604-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • elfutils-0.168-lp150.2 is installed
  • OR elfutils-lang-0.168-lp150.2 is installed
  • OR libasm1-0.168-lp150.2 is installed
  • OR libdw1-0.168-lp150.2 is installed
  • OR libdw1-32bit-0.168-lp150.2 is installed
  • OR libebl-plugins-0.168-lp150.2 is installed
  • OR libebl-plugins-32bit-0.168-lp150.2 is installed
  • OR libelf1-0.168-lp150.2 is installed
  • OR libelf1-32bit-0.168-lp150.2 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • kconf_update5-5.32.0-7 is installed
  • OR kconfig-5.32.0-7 is installed
  • OR kconfig-devel-5.32.0-7 is installed
  • OR kconfig-devel-32bit-5.55.0-lp151.2.5 is installed
  • OR kconfig-devel-64bit-5.32.0-7 is installed
  • OR kdelibs4-4.14.33-7 is installed
  • OR kdelibs4-apidocs-4.14.33-7 is installed
  • OR kdelibs4-branding-upstream-4.14.33-7 is installed
  • OR kdelibs4-core-4.14.33-7 is installed
  • OR kdelibs4-doc-4.14.33-7 is installed
  • OR libKF5ConfigCore5-5.32.0-7 is installed
  • OR libKF5ConfigCore5-32bit-5.55.0-lp151.2.5 is installed
  • OR libKF5ConfigCore5-64bit-5.32.0-7 is installed
  • OR libKF5ConfigCore5-lang-5.32.0-7 is installed
  • OR libKF5ConfigGui5-5.32.0-7 is installed
  • OR libKF5ConfigGui5-32bit-5.55.0-lp151.2.5 is installed
  • OR libKF5ConfigGui5-64bit-5.32.0-7 is installed
  • OR libkde4-4.14.33-7 is installed
  • OR libkde4-32bit-4.14.38-lp151.9.5 is installed
  • OR libkde4-64bit-4.14.33-7 is installed
  • OR libkde4-devel-4.14.33-7 is installed
  • OR libkdecore4-4.14.33-7 is installed
  • OR libkdecore4-32bit-4.14.38-lp151.9.5 is installed
  • OR libkdecore4-64bit-4.14.33-7 is installed
  • OR libkdecore4-devel-4.14.33-7 is installed
  • OR libksuseinstall-devel-4.14.33-7 is installed
  • OR libksuseinstall1-4.14.33-7 is installed
  • OR libksuseinstall1-32bit-4.14.38-lp151.9.5 is installed
  • OR libksuseinstall1-64bit-4.14.33-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • gtk2-2.18.9-0.39 is installed
  • OR gtk2-32bit-2.18.9-0.39 is installed
  • OR gtk2-lang-2.18.9-0.39 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-71.17 is installed
  • OR libMagick++-6_Q16-3-6.8.8.1-71.17 is installed
  • OR libMagickCore-6_Q16-1-6.8.8.1-71.17 is installed
  • OR libMagickCore-6_Q16-1-32bit-6.8.8.1-71.17 is installed
  • OR libMagickWand-6_Q16-1-6.8.8.1-71.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • apache-commons-beanutils-1.9.2-1 is installed
  • OR apache-commons-beanutils-javadoc-1.9.2-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_74-60_64_57-default-4-2 is installed
  • OR kgraft-patch-3_12_74-60_64_57-xen-4-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_20-4-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libFLAC++6-1.3.0-11 is installed
  • OR libFLAC8-1.3.0-11 is installed
  • OR libFLAC8-32bit-1.3.0-11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • git-2.12.3-27.14 is installed
  • OR git-core-2.12.3-27.14 is installed
  • OR git-doc-2.12.3-27.14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • openssh-7.2p2-74.30 is installed
  • OR openssh-askpass-gnome-7.2p2-74.30 is installed
  • OR openssh-fips-7.2p2-74.30 is installed
  • OR openssh-helpers-7.2p2-74.30 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • libvirt-2.0.0-27.42 is installed
  • OR libvirt-client-2.0.0-27.42 is installed
  • OR libvirt-daemon-2.0.0-27.42 is installed
  • OR libvirt-daemon-config-network-2.0.0-27.42 is installed
  • OR libvirt-daemon-config-nwfilter-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-interface-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-libxl-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-lxc-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-network-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-nodedev-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-nwfilter-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-qemu-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-secret-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-storage-2.0.0-27.42 is installed
  • OR libvirt-daemon-hooks-2.0.0-27.42 is installed
  • OR libvirt-daemon-lxc-2.0.0-27.42 is installed
  • OR libvirt-daemon-qemu-2.0.0-27.42 is installed
  • OR libvirt-daemon-xen-2.0.0-27.42 is installed
  • OR libvirt-doc-2.0.0-27.42 is installed
  • OR libvirt-lock-sanlock-2.0.0-27.42 is installed
  • OR libvirt-nss-2.0.0-27.42 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • libspice-client-glib-2_0-8-0.33-1 is installed
  • OR libspice-client-glib-helper-0.33-1 is installed
  • OR libspice-client-gtk-3_0-5-0.33-1 is installed
  • OR libspice-controller0-0.33-1 is installed
  • OR typelib-1_0-SpiceClientGlib-2_0-0.33-1 is installed
  • OR typelib-1_0-SpiceClientGtk-3_0-0.33-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • ghostscript-9.26-23.16 is installed
  • OR ghostscript-x11-9.26-23.16 is installed
  • OR libspectre-0.2.7-12.4 is installed
  • OR libspectre1-0.2.7-12.4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND logrotate-3.11.0-2.11 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND ruby2.1-rubygem-rack-1.6.4-2 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • xen-4.7.5_04-43.33 is installed
  • OR xen-doc-html-4.7.5_04-43.33 is installed
  • OR xen-libs-4.7.5_04-43.33 is installed
  • OR xen-libs-32bit-4.7.5_04-43.33 is installed
  • OR xen-tools-4.7.5_04-43.33 is installed
  • OR xen-tools-domU-4.7.5_04-43.33 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libvirglrenderer0-0.5.0-12.3 is installed
  • OR virglrenderer-0.5.0-12.3 is installed
    • BACK