Advisories ยป MGASA-2017-0297

Updated graphicsmagick packages fix security vulnerability

Publication date: 23 Aug 2017
Modification date: 23 Aug 2017
Type: security
Affected Mageia releases : 5 , 6
CVE: CVE-2017-12935 , CVE-2017-12936 , CVE-2017-12937

Description

Invalid memory read in SetImageColorCallBack() in image.c
(CVE-2017-12935).

Use-after-free in ReadWMFImage() in wmf.c (CVE-2017-12936).

Heap-based buffer overflow in ReadSUNImage() in sun.c (CVE-2017-12937).
                

References

SRPMS

5/core

6/core