SUSE-SU-2017:3168-1 -- SLES libMagickCore1ID: oval:org.secpod.oval:def:89044762 | Date: (C)2021-07-20 (M)2022-10-10 |
Class: PATCH | Family: unix |
This update for ImageMagick fixes several issues. These security issues were fixed: - CVE-2017-11534: Processing a crafted file in convert could have lead to a Memory Leak in the lite_font_map function in coders/wmf.c . - CVE-2017-13133: The load_level function in coders/xcf.c lacked offset validation, which allowed attackers to cause a denial of service via a crafted file . - CVE-2017-13139: The ReadOneMNGImage function in coders/png.c had an out-of-bounds read with the MNG CLIP chunk . - CVE-2017-15033: Fixed a memory leak in ReadYUVImage in coders/yuv.c .
Platform: |
SUSE Linux Enterprise Server 11 SP4 |