Mageia Advisory: MGASA-2016-0337 - The updated packages fix a security vulnerability

The updated packages fix a security vulnerability

Publication date: 08 Oct 2016
Modification date: 08 Oct 2016
Type: security
Affected Mageia releases : 5
CVE: CVE-2016-7800 , CVE-2016-7996 , CVE-2016-7997

Description

Unsigned underflow leading to heap overflow when parsing 8BIM chunk
(CVE-2016-7800).
Two issues in the WPG reader (CVE-2016-7996, CVE-2016-7997).

References

https://bugs.mageia.org/show_bug.cgi?id=19506
http://openwall.com/lists/oss-security/2016/10/01/7
http://openwall.com/lists/oss-security/2016/10/08/5
https://www.cve.org/CVERecord?id=CVE-2016-7800
https://www.cve.org/CVERecord?id=CVE-2016-7996
https://www.cve.org/CVERecord?id=CVE-2016-7997

SRPMS

5/core

graphicsmagick-1.3.25-1.2.mga5

Advisories » MGASA-2016-0337

The updated packages fix a security vulnerability

Description

References

SRPMS

5/core