Updated imagemagick packages fix security vulnerabilities
Publication date: 12 May 2018Type: security
Affected Mageia releases : 6
CVE: CVE-2016-5010 , CVE-2016-6491 , CVE-2016-6823 , CVE-2016-7101 , CVE-2016-7799 , CVE-2016-7906 , CVE-2016-8677 , CVE-2016-8678 , CVE-2016-8707 , CVE-2016-8862 , CVE-2016-8866 , CVE-2016-9556 , CVE-2016-9559 , CVE-2016-9298 , CVE-2016-9773 , CVE-2016-10046 , CVE-2016-10051 , CVE-2016-10052 , CVE-2016-10053 , CVE-2016-10054 , CVE-2016-10055 , CVE-2016-10056 , CVE-2016-10057 , CVE-2016-10058 , CVE-2016-10068 , CVE-2016-10144 , CVE-2016-10145 , CVE-2016-10146 , CVE-2017-5506 , CVE-2017-5507 , CVE-2017-5508 , CVE-2017-5509 , CVE-2017-5510 , CVE-2017-5511 , CVE-2017-7606 , CVE-2017-7619 , CVE-2017-7941 , CVE-2017-7942 , CVE-2017-7943 , CVE-2017-8343 , CVE-2017-8344 , CVE-2017-8345 , CVE-2017-8346 , CVE-2017-8347 , CVE-2017-8348 , CVE-2017-8349 , CVE-2017-8350 , CVE-2017-8351 , CVE-2017-8352 , CVE-2017-8353 , CVE-2017-8354 , CVE-2017-8355 , CVE-2017-8356 , CVE-2017-8357 , CVE-2017-8765 , CVE-2017-8830 , CVE-2017-9098 , CVE-2017-9141 , CVE-2017-9142 , CVE-2017-9143 , CVE-2017-9144 , CVE-2017-9439 , CVE-2017-9440 , CVE-2017-9500 , CVE-2017-9501 , CVE-2017-11352 , CVE-2017-11403 , CVE-2017-11446 , CVE-2017-11523 , CVE-2017-11533 , CVE-2017-11535 , CVE-2017-11537 , CVE-2017-11639 , CVE-2017-11640 , CVE-2017-12428 , CVE-2017-12431 , CVE-2017-12432 , CVE-2017-12434 , CVE-2017-12587 , CVE-2017-12640 , CVE-2017-12671 , CVE-2017-12877 , CVE-2017-12983 , CVE-2017-13134 , CVE-2017-13139 , CVE-2017-13140 , CVE-2017-13141 , CVE-2017-13142 , CVE-2017-13143 , CVE-2017-13144 , CVE-2017-13145 , CVE-2017-13758 , CVE-2017-13768 , CVE-2017-13769 , CVE-2017-14224 , CVE-2017-14607 , CVE-2017-14682 , CVE-2017-14741 , CVE-2017-14989 , CVE-2017-15277 , CVE-2017-16546 , CVE-2017-17499 , CVE-2017-17504 , CVE-2017-17879
Description
The imagemagick package has been updated to version 6.9.9.41 which fixes several unspecified security vulnerabilities. This update fixes several vulnerabilities in imagemagick, including: Various memory handling problems and cases of missing or incomplete input sanitising may result in denial of service, memory disclosure or the execution of arbitrary code if malformed GIF, TTF, SVG, TIFF, PCX, JPG or SFW files are processed. Several packages have been rebuilt for the updated ImageMagick.
References
- https://bugs.mageia.org/show_bug.cgi?id=19078
- http://git.imagemagick.org/repos/ImageMagick/blob/ImageMagick-6/ChangeLog
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5010
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6491
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6823
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7101
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7799
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7906
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8677
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8678
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8707
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8862
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8866
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9556
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9559
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9298
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9773
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10046
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10051
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10052
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10053
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10054
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10055
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10056
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10057
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10058
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10068
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10144
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10145
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10146
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5506
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5507
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5508
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5509
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5510
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5511
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7606
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7619
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7941
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7942
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7943
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8343
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8344
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8345
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8346
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8347
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8348
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8349
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8350
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8351
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8352
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8353
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8354
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8355
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8356
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8357
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8765
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8830
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9098
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9141
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9142
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9143
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9144
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9439
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9440
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9500
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9501
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11352
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11403
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11446
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11523
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11533
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11535
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11537
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11639
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11640
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12428
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12431
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12432
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12434
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12587
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12640
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12671
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12877
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12983
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13134
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13139
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13140
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13141
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13142
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13143
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13144
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13145
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13758
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13768
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13769
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14224
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14607
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14682
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14741
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14989
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15277
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16546
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17499
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17504
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17879
SRPMS
6/core
- converseen-0.9.6.2-1.3.mga6
- cuneiform-linux-1.1.0-9.2.mga6
- dvdauthor-0.7.2-2.2.mga6
- emacs-24.5-8.3.mga6
- imagemagick-6.9.9.41-1.mga6
- inkscape-0.92.1-2.2.mga6
- k3d-0.8.0.5-5.2.mga6
- kxstitch-2.0.0-2.2.mga6
- libopenshot-0.1.8-1.2.mga6
- ocaml-glmlite-0.03.51-17.2.mga6
- perl-Image-SubImageFind-0.30.0-6.2.mga6
- pfstools-2.0.6-3.2.mga6
- php-imagick-3.4.1-6.2.mga6
- php-magickwand-1.0.9.2-10.2.mga6
- psiconv-0.9.8-26.2.mga6
- pythonmagick-0.9.12-7.2.mga6
- ruby-rmagick-2.15.4-12.2.mga6
- synfig-1.2.1-2.2.mga6
- vdr-plugin-skinelchi-0.2.8-8.2.mga6
- vdr-plugin-skinenigmang-0.1.2-10.2.mga6