SUSE-SU-2016:1301-1 -- SLES libMagickCore1ID: oval:org.secpod.oval:def:89045175 | Date: (C)2021-08-03 (M)2023-02-20 |
Class: PATCH | Family: unix |
This update for ImageMagick fixes the following issues: - bsc#978061: A vulnerability in ImageMagick"s https module allowed users to execute arbitrary shell commands on the host performing the image conversion. The issue had the potential for remote command injection. This update mitigates the vulnerability by disabling all access to the https module in the delegates.xml config file
Platform: |
SUSE Linux Enterprise Server 11 SP4 |