Oval Definition:oval:org.opensuse.security:def:63721
Revision Date:2020-12-01Version:1
Title:Security update for ImageMagick (Moderate)
Description:

This update for ImageMagick fixes the following issues:

Security issues fixed:

- CVE-2019-11597: Fixed a heap-based buffer over-read in the WriteTIFFImage() (bsc#1138464). - Fixed a file content disclosure via SVG and WMF decoding (bsc#1138425).- CVE-2019-11472: Fixed a denial of service in ReadXWDImage() (bsc#1133204). - CVE-2019-11470: Fixed a denial of service in ReadCINImage() (bsc#1133205). - CVE-2019-11506: Fixed a heap-based buffer overflow in the WriteMATLABImage() (bsc#1133498). - CVE-2019-11505: Fixed a heap-based buffer overflow in the WritePDBImage() (bsc#1133501). - CVE-2019-10131: Fixed a off-by-one read in formatIPTCfromBuffer function in coders/meta.c (bsc#1134075). - CVE-2017-12806: Fixed a denial of service through memory exhaustion in format8BIM() (bsc#1135232). - CVE-2017-12805: Fixed a denial of service through memory exhaustion in ReadTIFFImage() (bsc#1135236). - CVE-2019-11598: Fixed a heap-based buffer over-read in WritePNMImage() (bsc#1136732) We also now disable PCL in the -SUSE configuration, as it also uses ghostscript for decoding (bsc#1136183)
Family:unixClass:patch
Status:Reference(s):1051510
1055117
1068664
1071995
1081516
1082318
1083647
1083710
1092100
1101357
1102247
1102604
1111666
1112182
1119222
1119784
1119785
1119799
1119800
1119801
1120813
1121753
1123080
1125665
1126325
1127034
1127315
1127458
1129770
1130972
1131595
1133021
1133204
1133205
1133498
1133501
1134075
1134097
1134390
1134399
1135232
1135236
1135335
1135642
1136183
1136732
1136896
1137458
1137534
1137535
1137584
1137609
1137811
1137827
1138425
1138464
1139358
1140133
1140139
1140255
1140322
1140652
1140887
1140888
1140889
1140891
1140893
1140903
1140945
1140954
1140955
1140956
1140957
1140958
1140959
1140960
1140961
1140962
1140964
1140971
1140972
1140992
1141401
1141402
1141452
1141453
1141454
1141478
1142023
1142112
1142220
1142221
1142254
1142350
1142351
1142354
1142359
1142450
1142701
1142868
1143003
1143045
1143105
1143185
1143189
1143191
1143507
1149955
1153238
1159208
1159623
1164903
1168994
1173812
1174463
1174570
1176031
1178512
CVE-2012-0876
CVE-2016-0718
CVE-2016-4472
CVE-2016-9063
CVE-2017-1000158
CVE-2017-12805
CVE-2017-12806
CVE-2017-9233
CVE-2018-1122
CVE-2018-1123
CVE-2018-1124
CVE-2018-1125
CVE-2018-1126
CVE-2018-18246
CVE-2018-18247
CVE-2018-18248
CVE-2018-18249
CVE-2018-18250
CVE-2018-20855
CVE-2019-10131
CVE-2019-1125
CVE-2019-11470
CVE-2019-11472
CVE-2019-11505
CVE-2019-11506
CVE-2019-11597
CVE-2019-11598
CVE-2019-11810
CVE-2019-13132
CVE-2019-13631
CVE-2019-13648
CVE-2019-14283
CVE-2019-14284
CVE-2019-16056
CVE-2019-16935
CVE-2019-3840
CVE-2019-3886
CVE-2020-10713
CVE-2020-14308
CVE-2020-14309
CVE-2020-14310
CVE-2020-14311
CVE-2020-15706
CVE-2020-15707
CVE-2020-24553
CVE-2020-28196
openSUSE-SU-2019:1767-1
openSUSE-SU-2020:0067-1
openSUSE-SU-2020:1169-1
openSUSE-SU-2020:1584-1
SUSE-SU-2019:0450-1
SUSE-SU-2019:0948-1
SUSE-SU-2019:1712-1
SUSE-SU-2019:2072-1
SUSE-SU-2019:2748-1
SUSE-SU-2020:0497-1
Platform(s):openSUSE Leap 15.1
openSUSE Leap 15.2
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP4-ESPOS
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libzmq5-4.2.3-lp151.5.3 is installed
  • OR zeromq-4.2.3-lp151.5.3 is installed
  • OR zeromq-devel-4.2.3-lp151.5.3 is installed
  • OR zeromq-tools-4.2.3-lp151.5.3 is installed
    • Definition Synopsis
  • openSUSE Leap 15.2 is installed
  • AND Package Information
  • grub2-2.04-lp152.7.3 is installed
  • OR grub2-branding-upstream-2.04-lp152.7.3 is installed
  • OR grub2-i386-efi-2.04-lp152.7.3 is installed
  • OR grub2-i386-efi-debug-2.04-lp152.7.3 is installed
  • OR grub2-i386-pc-2.04-lp152.7.3 is installed
  • OR grub2-i386-pc-debug-2.04-lp152.7.3 is installed
  • OR grub2-i386-xen-2.04-lp152.7.3 is installed
  • OR grub2-snapper-plugin-2.04-lp152.7.3 is installed
  • OR grub2-systemd-sleep-plugin-2.04-lp152.7.3 is installed
  • OR grub2-x86_64-efi-2.04-lp152.7.3 is installed
  • OR grub2-x86_64-efi-debug-2.04-lp152.7.3 is installed
  • OR grub2-x86_64-xen-2.04-lp152.7.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-71.123 is installed
  • OR ImageMagick-config-6-SUSE-6.8.8.1-71.123 is installed
  • OR ImageMagick-config-6-upstream-6.8.8.1-71.123 is installed
  • OR libMagickCore-6_Q16-1-6.8.8.1-71.123 is installed
  • OR libMagickWand-6_Q16-1-6.8.8.1-71.123 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-ESPOS is installed
  • AND Package Information
  • krb5-1.12.5-40.40 is installed
  • OR krb5-32bit-1.12.5-40.40 is installed
  • OR krb5-client-1.12.5-40.40 is installed
  • OR krb5-doc-1.12.5-40.40 is installed
  • OR krb5-plugin-kdb-ldap-1.12.5-40.40 is installed
  • OR krb5-plugin-preauth-otp-1.12.5-40.40 is installed
  • OR krb5-plugin-preauth-pkinit-1.12.5-40.40 is installed
  • OR krb5-server-1.12.5-40.40 is installed
    • BACK