Security update for GraphicsMagick SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2018:0460-1 Final 1 1 2018-02-16T07:00:58Z current 2018-02-16T07:00:58Z 2018-02-16T07:00:58Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for GraphicsMagick This update for GraphicsMagick fixes the following issues: - The dcm coder was updated to newest code, covering all currently known security issues. Security issues fixed: - CVE-2017-17502: ReadCMYKImage in ImportCMYKQuantumType had a heap-based buffer over-read via a crafted file. [boo#1073081] - CVE-2017-11450: A remote denial of service in coders/jpeg.c was fixed [boo#1049374] - CVE-2017-11140: coders/jpeg.c allowed remote attackers to cause a denial of service (application crash). [boo#1047900] - CVE-2017-14224: A heap-based buffer overflow in WritePCXImage in coders/pcx.c could lead to denial of service or code execution. [boo#1058009] - CVE-2017-17912: A heap-based buffer over-read in ReadNewsProfile in coders/tiff.c was fixed. [boo#1074307] - CVE-2017-18028: A memory exhaustion in the function ReadTIFFImage in coders/tiff.c was fixed. [boo#1076182] - CVE-2017-11722: The WriteOnePNGImage function in coders/png.c allowed attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted file, because the program's actual control flow was inconsistent with its indentation. This resulted in a logging statement executing outside of a loop, and consequently using an invalid array index corresponding to the loop's exit condition. (bsc#1051411) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/opensuse-updates/2018-02/msg00053.html E-Mail link for openSUSE-SU-2018:0460-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Leap 42.3 GraphicsMagick-1.3.25-68.1 GraphicsMagick-devel-1.3.25-68.1 libGraphicsMagick++-Q16-12-1.3.25-68.1 libGraphicsMagick++-devel-1.3.25-68.1 libGraphicsMagick-Q16-3-1.3.25-68.1 libGraphicsMagick3-config-1.3.25-68.1 libGraphicsMagickWand-Q16-2-1.3.25-68.1 perl-GraphicsMagick-1.3.25-68.1 GraphicsMagick-1.3.25-68.1 as a component of openSUSE Leap 42.3 GraphicsMagick-devel-1.3.25-68.1 as a component of openSUSE Leap 42.3 libGraphicsMagick++-Q16-12-1.3.25-68.1 as a component of openSUSE Leap 42.3 libGraphicsMagick++-devel-1.3.25-68.1 as a component of openSUSE Leap 42.3 libGraphicsMagick-Q16-3-1.3.25-68.1 as a component of openSUSE Leap 42.3 libGraphicsMagick3-config-1.3.25-68.1 as a component of openSUSE Leap 42.3 libGraphicsMagickWand-Q16-2-1.3.25-68.1 as a component of openSUSE Leap 42.3 perl-GraphicsMagick-1.3.25-68.1 as a component of openSUSE Leap 42.3 The ReadJPEGImage function in coders/jpeg.c in GraphicsMagick 1.3.26 creates a pixel cache before a successful read of a scanline, which allows remote attackers to cause a denial of service (resource consumption) via crafted JPEG files. CVE-2017-11140 openSUSE Leap 42.3:GraphicsMagick-1.3.25-68.1 openSUSE Leap 42.3:GraphicsMagick-devel-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagick++-Q16-12-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagick++-devel-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagick-Q16-3-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagick3-config-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagickWand-Q16-2-1.3.25-68.1 openSUSE Leap 42.3:perl-GraphicsMagick-1.3.25-68.1 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-02/msg00053.html https://www.suse.com/security/cve/CVE-2017-11140.html CVE-2017-11140 https://bugzilla.suse.com/1047900 SUSE Bug 1047900 coders/jpeg.c in ImageMagick before 7.0.6-1 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via JPEG data that is too short. CVE-2017-11450 openSUSE Leap 42.3:GraphicsMagick-1.3.25-68.1 openSUSE Leap 42.3:GraphicsMagick-devel-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagick++-Q16-12-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagick++-devel-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagick-Q16-3-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagick3-config-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagickWand-Q16-2-1.3.25-68.1 openSUSE Leap 42.3:perl-GraphicsMagick-1.3.25-68.1 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-02/msg00053.html https://www.suse.com/security/cve/CVE-2017-11450.html CVE-2017-11450 https://bugzilla.suse.com/1049374 SUSE Bug 1049374 The WriteOnePNGImage function in coders/png.c in GraphicsMagick 1.3.26 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted file, because the program's actual control flow was inconsistent with its indentation. This resulted in a logging statement executing outside of a loop, and consequently using an invalid array index corresponding to the loop's exit condition. CVE-2017-11722 openSUSE Leap 42.3:GraphicsMagick-1.3.25-68.1 openSUSE Leap 42.3:GraphicsMagick-devel-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagick++-Q16-12-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagick++-devel-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagick-Q16-3-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagick3-config-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagickWand-Q16-2-1.3.25-68.1 openSUSE Leap 42.3:perl-GraphicsMagick-1.3.25-68.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-02/msg00053.html https://www.suse.com/security/cve/CVE-2017-11722.html CVE-2017-11722 https://bugzilla.suse.com/1051411 SUSE Bug 1051411 A heap-based buffer overflow in WritePCXImage in coders/pcx.c in ImageMagick 7.0.6-8 Q16 allows remote attackers to cause a denial of service or code execution via a crafted file. CVE-2017-14224 openSUSE Leap 42.3:GraphicsMagick-1.3.25-68.1 openSUSE Leap 42.3:GraphicsMagick-devel-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagick++-Q16-12-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagick++-devel-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagick-Q16-3-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagick3-config-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagickWand-Q16-2-1.3.25-68.1 openSUSE Leap 42.3:perl-GraphicsMagick-1.3.25-68.1 low Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-02/msg00053.html https://www.suse.com/security/cve/CVE-2017-14224.html CVE-2017-14224 https://bugzilla.suse.com/1058009 SUSE Bug 1058009 ReadCMYKImage in coders/cmyk.c in GraphicsMagick 1.3.26 has a magick/import.c ImportCMYKQuantumType heap-based buffer over-read via a crafted file. CVE-2017-17502 openSUSE Leap 42.3:GraphicsMagick-1.3.25-68.1 openSUSE Leap 42.3:GraphicsMagick-devel-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagick++-Q16-12-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagick++-devel-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagick-Q16-3-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagick3-config-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagickWand-Q16-2-1.3.25-68.1 openSUSE Leap 42.3:perl-GraphicsMagick-1.3.25-68.1 low Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-02/msg00053.html https://www.suse.com/security/cve/CVE-2017-17502.html CVE-2017-17502 https://bugzilla.suse.com/1073081 SUSE Bug 1073081 https://bugzilla.suse.com/1077737 SUSE Bug 1077737 In GraphicsMagick 1.4 snapshot-20171217 Q8, there is a heap-based buffer over-read in ReadNewsProfile in coders/tiff.c, in which LocaleNCompare reads heap data beyond the allocated region. CVE-2017-17912 openSUSE Leap 42.3:GraphicsMagick-1.3.25-68.1 openSUSE Leap 42.3:GraphicsMagick-devel-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagick++-Q16-12-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagick++-devel-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagick-Q16-3-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagick3-config-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagickWand-Q16-2-1.3.25-68.1 openSUSE Leap 42.3:perl-GraphicsMagick-1.3.25-68.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-02/msg00053.html https://www.suse.com/security/cve/CVE-2017-17912.html CVE-2017-17912 https://bugzilla.suse.com/1074307 SUSE Bug 1074307 In ImageMagick 7.0.7-1 Q16, a memory exhaustion vulnerability was found in the function ReadTIFFImage in coders/tiff.c, which allow remote attackers to cause a denial of service via a crafted file. CVE-2017-18028 openSUSE Leap 42.3:GraphicsMagick-1.3.25-68.1 openSUSE Leap 42.3:GraphicsMagick-devel-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagick++-Q16-12-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagick++-devel-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagick-Q16-3-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagick3-config-1.3.25-68.1 openSUSE Leap 42.3:libGraphicsMagickWand-Q16-2-1.3.25-68.1 openSUSE Leap 42.3:perl-GraphicsMagick-1.3.25-68.1 low Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-02/msg00053.html https://www.suse.com/security/cve/CVE-2017-18028.html CVE-2017-18028 https://bugzilla.suse.com/1076182 SUSE Bug 1076182 https://bugzilla.suse.com/1082792 SUSE Bug 1082792 https://bugzilla.suse.com/1085236 SUSE Bug 1085236