Updated graphicsmagick packages fix CVE-2013-4589
Publication date: 30 Nov 2013Modification date: 30 Nov 2013
Type: security
Affected Mageia releases : 3
CVE: CVE-2013-4589
Description
Updated graphicsmagick packages fix security vulnerability: GraphicsMagick before 1.3.18 is found to have a vulnerability which can be exploited by malicious people to cause a Denial of Service (DoS). The vulnerability is caused due to an error within the "ExportAlphaQuantumType()" function found in magick/export.c when exporting 8-bit RGBA images, which can be exploited to cause a crash (CVE-2013-4589).
References
SRPMS
3/core
- graphicsmagick-1.3.17-2.1.mga3