Advisories » MGASA-2019-0115

Updated ImageMagick/GraphicsMagick packages fix security vulnerability

Publication date: 21 Mar 2019
Modification date: 21 Mar 2019
Type: security
Affected Mageia releases : 6
CVE: CVE-2019-7397

Description

In ImageMagick before 7.0.8-25 and GraphicsMagick through 1.3.31, several
memory leaks exist in WritePDFImage in coders/pdf.c. (CVE-2019-7397)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=24396
• https://lists.opensuse.org/opensuse-updates/2019-02/msg00106.html
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7397

SRPMS

6/core

• graphicsmagick-1.3.31-1.4.mga6
• imagemagick-6.9.10.33-1.mga6
• xine-lib1.2-1.2.8-8.1.mga6

6/tainted

• transcode-1.1.7-17.2.mga6.tainted
• xine-lib1.2-1.2.8-8.1.mga6.tainted