Updated graphicsmagick packages fix security vulnerability
Publication date: 25 Oct 2016Modification date: 25 Oct 2016
Type: security
Affected Mageia releases : 5
CVE: CVE-2016-8682 , CVE-2016-8683 , CVE-2016-8684
Description
The updated packages fix security vulnerabilities:
Stack-based buffer overflow in ReadSCTImage (CVE-2016-8682).
Memory allocation failure in ReadPCXImage (CVE-2016-8683).
Memory allocation failure in MagickMalloc (CVE-2016-8684).
References
- https://bugs.mageia.org/show_bug.cgi?id=19602
- http://openwall.com/lists/oss-security/2016/10/16/6
- http://openwall.com/lists/oss-security/2016/10/16/7
- http://openwall.com/lists/oss-security/2016/10/16/15
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8682
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8683
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8684
SRPMS
5/core
- graphicsmagick-1.3.25-1.3.mga5