The updated packages fix a security vulnerability
Publication date: 08 Oct 2016Modification date: 08 Oct 2016
Type: security
Affected Mageia releases : 5
CVE: CVE-2016-7800 , CVE-2016-7996 , CVE-2016-7997
Description
Unsigned underflow leading to heap overflow when parsing 8BIM chunk
(CVE-2016-7800).
Two issues in the WPG reader (CVE-2016-7996, CVE-2016-7997).
References
- https://bugs.mageia.org/show_bug.cgi?id=19506
- http://openwall.com/lists/oss-security/2016/10/01/7
- http://openwall.com/lists/oss-security/2016/10/08/5
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7800
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7996
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7997
SRPMS
5/core
- graphicsmagick-1.3.25-1.2.mga5