Updated imagemagick packages fix security vulnerabilities
Publication date: 10 Jun 2019Modification date: 10 Jun 2019
Type: security
Affected Mageia releases : 6
CVE: CVE-2019-11007 , CVE-2019-11008 , CVE-2019-11009
Description
The updated packages fix security vulnerabilities:
Fixed a heap-based buffer overflow in ReadMNGImage(). (CVE-2019-11007)
Fixed a heap-based buffer overflow in WriteXWDImage(). (CVE-2019-11008,
CVE-2019-11009)
References
- https://bugs.mageia.org/show_bug.cgi?id=24761
- https://lists.opensuse.org/opensuse-updates/2019-04/msg00067.html
- https://lists.suse.com/pipermail/sle-security-updates/2019-April/005358.html
- https://lists.suse.com/pipermail/sle-security-updates/2019-April/005366.html
- https://lists.opensuse.org/opensuse-security-announce/2019-05/msg00006.html
- https://lists.opensuse.org/opensuse-updates/2019-05/msg00023.html
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11007
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11008
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11009
SRPMS
6/core
- imagemagick-6.9.10.48-1.mga6