Oval Definition:oval:org.opensuse.security:def:79226
Revision Date:2018-09-21Version:1
Title:Security update for ImageMagick (Moderate)
Description:

This update for ImageMagick fixes the following issues:

The following security vulnerabilities were fixed:

- CVE-2018-16329: Prevent NULL pointer dereference in the GetMagickProperty function leading to DoS (bsc#1106858) - CVE-2018-16323: ReadXBMImage left data uninitialized when processing an XBM file that has a negative pixel value. If the affected code was used as a library loaded into a process that includes sensitive information, that information sometimes can be leaked via the image data (bsc#1106855) - CVE-2018-14434: Fixed a memory leak for a colormap in WriteMPCImage (bsc#1102003) - CVE-2018-14435: Fixed a memory leak in DecodeImage in coders/pcd.c (bsc#1102007) - CVE-2018-14436: Fixed a memory leak in ReadMIFFImage in coders/miff.c (bsc#1102005) - CVE-2018-14437: Fixed a memory leak in parse8BIM in coders/meta.c (bsc#1102004) - Disable PS, PS2, PS3, XPS and PDF coders in default policy.xml (bsc#1105592)
Family:unixClass:patch
Status:Reference(s):1102003
1102004
1102005
1102007
1105592
1106855
1106858
CVE-2018-14434
CVE-2018-14435
CVE-2018-14436
CVE-2018-14437
CVE-2018-16323
CVE-2018-16329
SUSE-SU-2018:2778-1
Platform(s):SUSE Linux Enterprise Desktop 12 SP3
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-71.74.1 is installed
  • OR libMagick++-6_Q16-3-6.8.8.1-71.74.1 is installed
  • OR libMagickCore-6_Q16-1-6.8.8.1-71.74.1 is installed
  • OR libMagickCore-6_Q16-1-32bit-6.8.8.1-71.74.1 is installed
  • OR libMagickWand-6_Q16-1-6.8.8.1-71.74.1 is installed
    • BACK