Download
| Alert*
oval:org.secpod.oval:def:61738
The host is installed with ImageMagick 7.0.8-34 and is prone to an improper initialization vulnerability. The flaws are present in the WriteJP2Image function in coders/jp2.c, which fails to handle "use of uninitialized value". Successful exploitation could allows an attackers to cause unspecified im ... oval:org.secpod.oval:def:89050770 This update for ImageMagick fixes the following issues: - CVE-2019-13301: Fixed a memory leak in AcquireMagickMemory . - CVE-2019-13309: Fixed a memory leak at AcquireMagickMemory due to mishandling the NoSuchImage error in CLIListOperatorImages . - CVE-2019-13310: Fixed a memory leak at AcquireMagi ... oval:org.secpod.oval:def:1902172 ImageMagick 7.0.8-34 has a "use of uninitialized value" vulnerability in the WriteJP2Image function in coders/jp2.c. oval:org.secpod.oval:def:604901 This update fixes multiple vulnerabilities in Imagemagick: Various memory handling problems and cases of missing or incomplete input sanitising may result in denial of service, memory disclosure or potentially the execution of arbitrary code if malformed image files are processed. oval:org.secpod.oval:def:2104625 ImageMagick 7.0.8-54 Q16 allows Division by Zero in RemoveDuplicateLayers in MagickCore/layer.c. oval:org.secpod.oval:def:66704 This update fixes multiple vulnerabilities in Imagemagick: Various memory handling problems and cases of missing or incomplete input sanitising may result in denial of service, memory disclosure or potentially the execution of arbitrary code if malformed image files are processed. oval:org.secpod.oval:def:60786 imagemagick: Image manipulation programs and library Several security issues were fixed in ImageMagick. oval:org.secpod.oval:def:705282 imagemagick: Image manipulation programs and library Several security issues were fixed in ImageMagick. |