Oval Definition:oval:org.opensuse.security:def:65155
Revision Date:2020-12-01Version:1
Title:Security update for ImageMagick (Moderate)
Description:

This update for ImageMagick fixes the following issues:

Security issues fixed:

- CVE-2019-11472: Fixed a denial-of-service in ReadXWDImage() (bsc#1133204). - CVE-2019-11470: Fixed a denial-of-service in ReadCINImage() (bsc#1133205). - CVE-2019-11506: Fixed a heap-based buffer overflow in the WriteMATLABImage() (bsc#1133498). - CVE-2019-11505: Fixed a heap-based buffer overflow in the WritePDBImage() (bsc#1133501). - CVE-2019-11598: Fixed a heap-based buffer overread in WritePNMImage() (bsc#1136732)

We also now disable PCL in the -SUSE configuration, as it also uses ghostscript for decoding (bsc#1136183)

Family:unixClass:patch
Status:Reference(s):1133204
1133205
1133498
1133501
1136183
1136732
1162610
CVE-2019-11470
CVE-2019-11472
CVE-2019-11505
CVE-2019-11506
CVE-2019-11598
CVE-2020-8597
SUSE-SU-2019:1523-1
SUSE-SU-2020:0489-1
Platform(s):SUSE Linux Enterprise Module for Desktop Applications 15 SP1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed
  • AND Package Information
  • ImageMagick-7.0.7.34-3.61 is installed
  • OR ImageMagick-config-7-SUSE-7.0.7.34-3.61 is installed
  • OR ImageMagick-devel-7.0.7.34-3.61 is installed
  • OR libMagick++-7_Q16HDRI4-7.0.7.34-3.61 is installed
  • OR libMagick++-devel-7.0.7.34-3.61 is installed
  • OR libMagickCore-7_Q16HDRI6-7.0.7.34-3.61 is installed
  • OR libMagickWand-7_Q16HDRI6-7.0.7.34-3.61 is installed
    • BACK