Advisories ยป MGASA-2013-0355

Updated graphicsmagick packages fix CVE-2013-4589

Publication date: 30 Nov 2013
Type: security
Affected Mageia releases : 3
CVE: CVE-2013-4589


Updated graphicsmagick packages fix security vulnerability:

GraphicsMagick before 1.3.18 is found to have a vulnerability which can be
exploited by malicious people to cause a Denial of Service (DoS). The
vulnerability is caused due to an error within the "ExportAlphaQuantumType()"
function found in magick/export.c when exporting 8-bit RGBA images, which can
be exploited to cause a crash (CVE-2013-4589).