Oval Definition:oval:org.opensuse.security:def:56248
Revision Date:2020-12-01Version:1
Title:Security update for ImageMagick (Moderate)
Description:





This update for ImageMagick fixes the following issues:

- CVE-2016-10046: Prevent buffer overflow in draw.c caused by an incorrect length calculation (bsc#1017308) - CVE-2016-10048: Arbitrary module could have been load because relative path were not escaped (bsc#1017310) - CVE-2016-10049: Corrupt RLE files could have overflowed a buffer due to a incorrect length calculation (bsc#1017311) - CVE-2016-10050: Corrupt RLE files could have overflowed a heap buffer due to a missing offset check (bsc#1017312) - CVE-2016-10051: Fixed use after free when reading PWP files (bsc#1017313) - CVE-2016-10052: Added bound check to exif parsing of JPEG files (bsc#1017314) - CVE-2016-10059: Unchecked calculation when reading TIFF files could have lead to a buffer overflow (bsc#1017318) - CVE-2016-10060: Improved error handling when writing files to not mask errors (bsc#1017319) - CVE-2016-10061: Improved error handling when writing files to not mask errors (bsc#1017319). - CVE-2016-10062: Improved error handling when writing files to not mask errors (bsc#1017319). - CVE-2016-10063: Check validity of extend during TIFF file reading (bsc#1017320) - CVE-2016-10064: Improved checks for buffer overflow when reading TIFF files (bsc#1017321) - CVE-2016-10065: Unchecked calculations when reading VIFF files could have lead to out of bound reads (bsc#1017322) - CVE-2016-10068: Prevent NULL pointer access when using the MSL interpreter (bsc#1017324) - CVE-2016-10069: Add check for invalid mat file (bsc#1017325). - CVE-2016-10070: Prevent allocating the wrong amount of memory when reading mat files (bsc#1017326) - CVE-2016-10071: Prevent allocating the wrong amount of memory when reading mat files (bsc#1017326) - CVE-2016-10144: Added a check after allocating memory when parsing IPL files (bsc#1020433) - CVE-2016-10145: Fixed of-by-one in string copy operation when parsing WPG files (bsc#1020435) - CVE-2016-10146: Captions and labels were handled incorrectly, causing a memory leak that could have lead to DoS (bsc#1020443) - CVE-2017-5506: Missing offset check leading to a double-free (bsc#1020436) - CVE-2017-5507: Fixed a memory leak when reading MPC files allowing for DoS (bsc#1020439) - CVE-2017-5508: Increase the amount of memory allocated for TIFF pixels to prevent a heap buffer-overflow (bsc#1020441) - CVE-2017-5510: Prevent out-of-bounds write when reading PSD files (bsc#1020446). - CVE-2017-5511: A missing cast when reading PSD files could have caused memory corruption by a heap overflow (bsc#1020448)

This update removes the fix for CVE-2016-9773. ImageMagick-6 was not affected by CVE-2016-9773 and it caused a regression (at least in GraphicsMagick) (bsc#1017421).
Family:unixClass:patch
Status:Reference(s):1017308
1017310
1017311
1017312
1017313
1017314
1017318
1017319
1017320
1017321
1017322
1017324
1017325
1017326
1017421
1020433
1020435
1020436
1020439
1020441
1020443
1020446
1020448
1035082
1039063
1039064
1039066
1039069
1039661
1043960
1053153
1069708
1076017
1083125
1083488
1085114
1085447
1090368
1090646
1154212
1158442
947164
950590
952849
953110
953187
954872
956829
957162
960305
964465
CVE-2009-1886
CVE-2009-1888
CVE-2009-2813
CVE-2009-2906
CVE-2009-2948
CVE-2009-5029
CVE-2010-0547
CVE-2010-0728
CVE-2010-0787
CVE-2012-1586
CVE-2012-2673
CVE-2012-4412
CVE-2013-0242
CVE-2013-1914
CVE-2013-1987
CVE-2013-2207
CVE-2013-4237
CVE-2013-4242
CVE-2013-4332
CVE-2013-4458
CVE-2013-7423
CVE-2014-0475
CVE-2014-1829
CVE-2014-1830
CVE-2014-3591
CVE-2014-4043
CVE-2014-5119
CVE-2014-6040
CVE-2014-7817
CVE-2014-8121
CVE-2014-9092
CVE-2014-9402
CVE-2015-0837
CVE-2015-1472
CVE-2015-1781
CVE-2015-5313
CVE-2015-7511
CVE-2015-7512
CVE-2015-8345
CVE-2016-10046
CVE-2016-10048
CVE-2016-10049
CVE-2016-10050
CVE-2016-10051
CVE-2016-10052
CVE-2016-10059
CVE-2016-10060
CVE-2016-10061
CVE-2016-10062
CVE-2016-10063
CVE-2016-10064
CVE-2016-10065
CVE-2016-10068
CVE-2016-10069
CVE-2016-10070
CVE-2016-10071
CVE-2016-10144
CVE-2016-10145
CVE-2016-10146
CVE-2016-10196
CVE-2016-6313
CVE-2017-10661
CVE-2017-13166
CVE-2017-16939
CVE-2017-5429
CVE-2017-5430
CVE-2017-5432
CVE-2017-5433
CVE-2017-5434
CVE-2017-5435
CVE-2017-5436
CVE-2017-5438
CVE-2017-5439
CVE-2017-5440
CVE-2017-5441
CVE-2017-5442
CVE-2017-5443
CVE-2017-5444
CVE-2017-5445
CVE-2017-5446
CVE-2017-5447
CVE-2017-5448
CVE-2017-5449
CVE-2017-5451
CVE-2017-5454
CVE-2017-5455
CVE-2017-5456
CVE-2017-5459
CVE-2017-5460
CVE-2017-5461
CVE-2017-5462
CVE-2017-5464
CVE-2017-5465
CVE-2017-5466
CVE-2017-5467
CVE-2017-5469
CVE-2017-5470
CVE-2017-5472
CVE-2017-5506
CVE-2017-5507
CVE-2017-5508
CVE-2017-5510
CVE-2017-5511
CVE-2017-7749
CVE-2017-7750
CVE-2017-7751
CVE-2017-7752
CVE-2017-7754
CVE-2017-7755
CVE-2017-7756
CVE-2017-7757
CVE-2017-7758
CVE-2017-7761
CVE-2017-7763
CVE-2017-7764
CVE-2017-7765
CVE-2017-7768
CVE-2017-7778
CVE-2017-9047
CVE-2017-9048
CVE-2017-9049
CVE-2017-9050
CVE-2018-1000004
CVE-2018-1068
CVE-2018-7566
CVE-2018-8781
CVE-2018-8897
CVE-2019-2933
CVE-2019-2945
CVE-2019-2962
CVE-2019-2964
CVE-2019-2973
CVE-2019-2978
CVE-2019-2981
CVE-2019-2983
CVE-2019-2989
CVE-2019-2992
CVE-2019-2999
SUSE-SU-2016:0010-1
SUSE-SU-2016:0923-1
SUSE-SU-2017:0529-1
SUSE-SU-2017:1538-1
SUSE-SU-2017:1669-1
SUSE-SU-2017:3321-1
SUSE-SU-2018:1015-1
SUSE-SU-2018:1506-1
SUSE-SU-2020:0051-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • gegl-0_3-0.3.34-lp150.1 is installed
  • OR gegl-0_3-lang-0.3.34-lp150.1 is installed
  • OR libgegl-0_3-0-0.3.34-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • dkgpg-1.1.3-lp151.3.3 is installed
  • OR libTMCG-1.3.18-lp151.3.3 is installed
  • OR libTMCG-devel-1.3.18-lp151.3.3 is installed
  • OR libTMCG18-1.3.18-lp151.3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND kvm-1.4.2-35 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-59 is installed
  • OR libMagick++-6_Q16-3-6.8.8.1-59 is installed
  • OR libMagickCore-6_Q16-1-6.8.8.1-59 is installed
  • OR libMagickCore-6_Q16-1-32bit-6.8.8.1-59 is installed
  • OR libMagickWand-6_Q16-1-6.8.8.1-59 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND cifs-utils-6.4-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_67-60_64_21-default-12-2 is installed
  • OR kgraft-patch-3_12_67-60_64_21-xen-12-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_10-12-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libXrender1-0.9.8-3 is installed
  • OR libXrender1-32bit-0.9.8-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • perl-5.18.2-12.14 is installed
  • OR perl-32bit-5.18.2-12.14 is installed
  • OR perl-base-5.18.2-12.14 is installed
  • OR perl-doc-5.18.2-12.14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • apache2-2.4.23-29.18 is installed
  • OR apache2-doc-2.4.23-29.18 is installed
  • OR apache2-example-pages-2.4.23-29.18 is installed
  • OR apache2-prefork-2.4.23-29.18 is installed
  • OR apache2-utils-2.4.23-29.18 is installed
  • OR apache2-worker-2.4.23-29.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND ucode-intel-20180703-13.25 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND libvirglrenderer0-0.5.0-11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libdcerpc-binding0-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libdcerpc-binding0-32bit-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libdcerpc0-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libdcerpc0-32bit-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libndr-krb5pac0-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libndr-krb5pac0-32bit-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libndr-nbt0-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libndr-nbt0-32bit-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libndr-standard0-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libndr-standard0-32bit-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libndr0-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libndr0-32bit-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libnetapi0-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libnetapi0-32bit-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libsamba-credentials0-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libsamba-credentials0-32bit-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libsamba-errors0-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libsamba-errors0-32bit-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libsamba-hostconfig0-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libsamba-hostconfig0-32bit-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libsamba-passdb0-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libsamba-passdb0-32bit-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libsamba-util0-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libsamba-util0-32bit-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libsamdb0-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libsamdb0-32bit-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libsmbclient0-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libsmbclient0-32bit-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libsmbconf0-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libsmbconf0-32bit-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libsmbldap0-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libsmbldap0-32bit-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libtevent-util0-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libtevent-util0-32bit-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libwbclient0-4.6.16+git.154.2998451b912-3.40 is installed
  • OR libwbclient0-32bit-4.6.16+git.154.2998451b912-3.40 is installed
  • OR samba-4.6.16+git.154.2998451b912-3.40 is installed
  • OR samba-client-4.6.16+git.154.2998451b912-3.40 is installed
  • OR samba-client-32bit-4.6.16+git.154.2998451b912-3.40 is installed
  • OR samba-doc-4.6.16+git.154.2998451b912-3.40 is installed
  • OR samba-libs-4.6.16+git.154.2998451b912-3.40 is installed
  • OR samba-libs-32bit-4.6.16+git.154.2998451b912-3.40 is installed
  • OR samba-winbind-4.6.16+git.154.2998451b912-3.40 is installed
  • OR samba-winbind-32bit-4.6.16+git.154.2998451b912-3.40 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • ovmf-2017+git1510945757.b2662641d5-2 is installed
  • OR ovmf-tools-2017+git1510945757.b2662641d5-2 is installed
  • OR qemu-ovmf-x86_64-2017+git1510945757.b2662641d5-2 is installed
  • OR qemu-uefi-aarch64-2017+git1510945757.b2662641d5-2 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • MozillaFirefox-52.2.0esr-108 is installed
  • OR MozillaFirefox-branding-SLE-52-31 is installed
  • OR MozillaFirefox-devel-52.2.0esr-108 is installed
  • OR MozillaFirefox-translations-52.2.0esr-108 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND clamav-0.100.1-33.15 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libfreebl3-3.53.1-58.48 is installed
  • OR libfreebl3-32bit-3.53.1-58.48 is installed
  • OR libfreebl3-hmac-3.53.1-58.48 is installed
  • OR libfreebl3-hmac-32bit-3.53.1-58.48 is installed
  • OR libsoftokn3-3.53.1-58.48 is installed
  • OR libsoftokn3-32bit-3.53.1-58.48 is installed
  • OR libsoftokn3-hmac-3.53.1-58.48 is installed
  • OR libsoftokn3-hmac-32bit-3.53.1-58.48 is installed
  • OR mozilla-nspr-4.25-19.15 is installed
  • OR mozilla-nspr-32bit-4.25-19.15 is installed
  • OR mozilla-nspr-devel-4.25-19.15 is installed
  • OR mozilla-nss-3.53.1-58.48 is installed
  • OR mozilla-nss-32bit-3.53.1-58.48 is installed
  • OR mozilla-nss-certs-3.53.1-58.48 is installed
  • OR mozilla-nss-certs-32bit-3.53.1-58.48 is installed
  • OR mozilla-nss-devel-3.53.1-58.48 is installed
  • OR mozilla-nss-sysinit-3.53.1-58.48 is installed
  • OR mozilla-nss-sysinit-32bit-3.53.1-58.48 is installed
  • OR mozilla-nss-tools-3.53.1-58.48 is installed
    • BACK