Oval Definition:oval:org.opensuse.security:def:68606
Revision Date:2020-12-01Version:1
Title:Security update for ImageMagick (Moderate)
Description:

This update for ImageMagick fixes the following issues:

Security issues fixed:

- CVE-2019-11472: Fixed a denial-of-service in ReadXWDImage() (bsc#1133204). - CVE-2019-11470: Fixed a denial-of-service in ReadCINImage() (bsc#1133205). - CVE-2019-11506: Fixed a heap-based buffer overflow in the WriteMATLABImage() (bsc#1133498). - CVE-2019-11505: Fixed a heap-based buffer overflow in the WritePDBImage() (bsc#1133501). - CVE-2019-11598: Fixed a heap-based buffer overread in WritePNMImage() (bsc#1136732)

We also now disable PCL in the -SUSE configuration, as it also uses ghostscript for decoding (bsc#1136183)

Family:unixClass:patch
Status:Reference(s):1100687
1121624
1124211
1133204
1133205
1133498
1133501
1136183
1136732
CVE-2018-13785
CVE-2019-11470
CVE-2019-11472
CVE-2019-11505
CVE-2019-11506
CVE-2019-11598
CVE-2019-7317
SUSE-SU-2019:1398-2
SUSE-SU-2019:1523-1
Platform(s):SUSE Linux Enterprise Module for Development Tools 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed
  • AND Package Information
  • ImageMagick-7.0.7.34-3.61 is installed
  • OR perl-PerlMagick-7.0.7.34-3.61 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • libpng16-1.6.34-3.9 is installed
  • OR libpng16-compat-devel-32bit-1.6.34-3.9 is installed
  • OR libpng16-devel-32bit-1.6.34-3.9 is installed
  • OR libpng16-tools-1.6.34-3.9 is installed
    • BACK