SUSE-SU-2019:2106-1 -- SLES ImageMagick, libMagick++-7_Q16HDRI4, libMagick++-devel, libMagickCore-7_Q16HDRI6, libMagickWand-7_Q16HDRI6ID: oval:org.secpod.oval:def:89050770 | Date: (C)2023-10-16 (M)2023-10-15 |
Class: PATCH | Family: unix |
This update for ImageMagick fixes the following issues: - CVE-2019-13301: Fixed a memory leak in AcquireMagickMemory . - CVE-2019-13309: Fixed a memory leak at AcquireMagickMemory due to mishandling the NoSuchImage error in CLIListOperatorImages . - CVE-2019-13310: Fixed a memory leak at AcquireMagickMemory because of an error in MagickWand/mogrify.c . - CVE-2019-13311: Fixed a memory leak at AcquireMagickMemory because of a wand/mogrify.c error . - CVE-2019-13303: Fixed a heap-based buffer over-read in MagickCore/composite.c in CompositeImage . - CVE-2019-13296: Fixed a memory leak in AcquireMagickMemory because of an error in CLIListOperatorImages in MagickWand/operation.c . - CVE-2019-13299: Fixed a heap-based buffer over-read at MagickCore/pixel-accessor.h in GetPixelChannel . - CVE-2019-13454: Fixed a division by zero in RemoveDuplicateLayers in MagickCore/layer.c . - CVE-2019-13295: Fixed a heap-based buffer over-read at MagickCore/threshold.c in AdaptiveThresholdImage . - CVE-2019-13297: Fixed a heap-based buffer over-read at MagickCore/threshold.c in AdaptiveThresholdImage . - CVE-2019-12979: Fixed the use of uninitialized values in SyncImageSettings . - CVE-2019-13391: Fixed a heap-based buffer over-read in MagickCore/fourier.c . - CVE-2019-13308: Fixed a heap-based buffer overflow in MagickCore/fourier.c . - CVE-2019-13302: Fixed a heap-based buffer over-read in MagickCore/fourier.c in ComplexImages . - CVE-2019-13298: Fixed a heap-based buffer overflow at MagickCore/pixel-accessor.h in SetPixelViaPixelInfo . - CVE-2019-13300: Fixed a heap-based buffer overflow at MagickCore/statistic.c in EvaluateImages . - CVE-2019-13307: Fixed a heap-based buffer overflow at MagickCore/statistic.c . - CVE-2019-12977: Fixed the use of uninitialized values in WriteJP2Imag . - CVE-2019-12975: Fixed a memory leak in the WriteDPXImage in coders/dpx.c . - CVE-2019-13135: Fixed the use of uninitialized values in ReadCUTImage . - CVE-2019-12978: Fixed the use of uninitialized values in ReadPANGOImage . - CVE-2019-12974: Fixed a NULL pointer dereference in the ReadPANGOImage . - CVE-2019-13304: Fixed a stack-based buffer overflow at coders/pnm.c in WritePNMImage . - CVE-2019-13305: Fixed one more stack-based buffer overflow at coders/pnm.c in WritePNMImage . - CVE-2019-13306: Fixed an additional stack-based buffer overflow at coders/pnm.c in WritePNMImage . - CVE-2019-13133: Fixed a memory leak in the ReadBMPImage . - CVE-2019-13134: Fixed a memory leak in the ReadVIFFImage . - CVE-2019-13137: Fixed a memory leak in the ReadPSImage . - CVE-2019-13136: Fixed a integer overflow vulnerability in the TIFFSeekCustomStream . - CVE-2019-12976: Fixed a memory leak in the ReadPCLImage in coders/pcl.c.
Platform: |
SUSE Linux Enterprise Desktop 15 |
SUSE Linux Enterprise Desktop 15 SP1 |
Product: |
ImageMagick |
libMagick++-7_Q16HDRI4 |
libMagick++-devel |
libMagickCore-7_Q16HDRI6 |
libMagickWand-7_Q16HDRI6 |