SUSE-SU-2020:0275-1 | Mondoo Vulnerability Intelligence

SUSE-SU-2020:0275-1

UNKNOWN

Security update for ImageMagick

Published Jan 30, 2020

Modified 6 years ago

Fix available

Details

This update for ImageMagick fixes the following issues:

Security issue fixed:

CVE-2019-19948: Fixed a heap-based buffer overflow in WriteSGIImage() (bsc#1159861).
CVE-2019-19949: Fixed a heap-based buffer over-read in WritePNGImage() (bsc#1160369).

Non-security issue fixed:

Fixed an issue where converting tiff to png would lead to unviewable files (bsc#1161194).

Affected Packages

ImageMagick

SUSE Linux Enterprise Module for Desktop Applications 15SUSE Linux Enterprise Module for Desktop Applications 15 SP1SUSE Linux Enterprise Module for Development Tools 15SUSE Linux Enterprise Module for Development Tools 15 SP1

Fixed in:

7.0.7.34-3.79.1

ImageMagick-config-7-SUSE

SUSE Linux Enterprise Module for Desktop Applications 15SUSE Linux Enterprise Module for Desktop Applications 15 SP1

Fixed in:

7.0.7.34-3.79.1

ImageMagick-config-7-upstream

SUSE Linux Enterprise Module for Desktop Applications 15

Fixed in:

7.0.7.34-3.79.1

ImageMagick-devel

SUSE Linux Enterprise Module for Desktop Applications 15SUSE Linux Enterprise Module for Desktop Applications 15 SP1