https://github.com/ImageMagick/ImageMagick/commit/c78993d138bf480ab4652b5a48379d4ff75ba5f7

https://github.com/ImageMagick/ImageMagick/issues/1553

[debian-lts-announce] 20191021 [SECURITY] [DLA 1968-1] imagemagick security update

New bugfix and security upstream release, see http://www.graphicsmagick.org/NEWS.html#december-24-2019

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

This update for ImageMagick fixes the following issues :

Security issues fixed :

  - CVE-2019-15139: Fixed a denial-of-service vulnerability     in ReadXWDImage (bsc#1146213).

  - CVE-2019-15140: Fixed a use-after-free bug in the Matlab     image parser (bsc#1146212).

  - CVE-2019-15141: Fixed a divide-by-zero vulnerability in     the MeanShiftImage function (bsc#1146211).

  - CVE-2019-14980: Fixed an application crash resulting     from a heap-based buffer over-read in WriteTIFFImage     (bsc#1146068).

  - CVE-2019-14981: Fixed a use after free in the UnmapBlob     function (bsc#1146065).

  - CVE-2019-16708: Fixed a memory leak in magick/xwindow.c     (bsc#1151781).

  - CVE-2019-16709: Fixed a memory leak in coders/dps.c     (bsc#1151782).

  - CVE-2019-16710: Fixed a memory leak in coders/dot.c     (bsc#1151783).

  - CVE-2019-16711: Fixed a memory leak in     Huffman2DEncodeImage in coders/ps2.c (bsc#1151784).

  - CVE-2019-16712: Fixed a memory leak in     Huffman2DEncodeImage in coders/ps3.c (bsc#1151785).

  - CVE-2019-16713: Fixed a memory leak in coders/dot.c     (bsc#1151786).

This update was imported from the SUSE:SLE-15:Update update project.

It was discovered that ImageMagick incorrectly handled certain malformed image files. If a user or automated system using ImageMagick were tricked into opening a specially crafted image, an attacker could exploit this to cause a denial of service or possibly execute code with the privileges of the user invoking the program.

Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

This update for ImageMagick fixes the following issues :

Security issues fixed :

CVE-2019-15139: Fixed a denial-of-service vulnerability in ReadXWDImage. (bsc#1146213)

CVE-2019-15140: Fixed a use-after-free bug in the Matlab image parser.
(bsc#1146212)

CVE-2019-15141: Fixed a divide-by-zero vulnerability in the MeanShiftImage function. (bsc#1146211)

CVE-2019-14980: Fixed an application crash resulting from a heap-based buffer over-read in WriteTIFFImage. (bsc#1146068)

CVE-2019-16708: Fixed a memory leak in magick/xwindow.c (bsc#1151781).

CVE-2019-16709: Fixed a memory leak in coders/dps.c (bsc#1151782).

CVE-2019-16710: Fixed a memory leak in coders/dot.c (bsc#1151783).

CVE-2019-16711: Fixed a memory leak in Huffman2DEncodeImage in coders/ps2.c (bsc#1151784).

CVE-2019-16712: Fixed a memory leak in Huffman2DEncodeImage in coders/ps3.c (bsc#1151785).

CVE-2019-16713: Fixed a memory leak in coders/dot.c (bsc#1151786).

Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

This update for ImageMagick fixes the following issues :

Security issues fixed :

CVE-2019-15139: Fixed a denial-of-service vulnerability in ReadXWDImage (bsc#1146213).

CVE-2019-15140: Fixed a use-after-free bug in the Matlab image parser (bsc#1146212).

CVE-2019-15141: Fixed a divide-by-zero vulnerability in the MeanShiftImage function (bsc#1146211).

CVE-2019-14980: Fixed an application crash resulting from a heap-based buffer over-read in WriteTIFFImage (bsc#1146068).

CVE-2019-14981: Fixed a use after free in the UnmapBlob function (bsc#1146065).

CVE-2019-16708: Fixed a memory leak in magick/xwindow.c (bsc#1151781).

CVE-2019-16709: Fixed a memory leak in coders/dps.c (bsc#1151782).

CVE-2019-16710: Fixed a memory leak in coders/dot.c (bsc#1151783).

CVE-2019-16711: Fixed a memory leak in Huffman2DEncodeImage in coders/ps2.c (bsc#1151784).

CVE-2019-16712: Fixed a memory leak in Huffman2DEncodeImage in coders/ps3.c (bsc#1151785).

CVE-2019-16713: Fixed a memory leak in coders/dot.c (bsc#1151786).

Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

Multiple vulnerabilities have been found in imagemagick, an image processing toolkit.

CVE-2019-11470

Uncontrolled resource consumption caused by insufficiently sanitized image size in ReadCINImage (coders/cin.c). This vulnerability might be leveraged by remote attackers to cause denial of service via a crafted Cineon image.

CVE-2019-14981

Divide-by-zero vulnerability in MeanShiftImage (magick/feature.c).
This vulnerability might be leveraged by remote attackers to cause denial of service via crafted image data.

CVE-2019-15139

Out-of-bounds read in ReadXWDImage (coders/xwd.c). This vulnerability might be leveraged by remote attackers to cause denial of service via a crafted XWD (X Window System window dumping file) image file.

CVE-2019-15140

Bound checking issue in ReadMATImage (coders/mat.c), potentially leading to use-after-free. This vulnerability might be leveraged by remote attackers to cause denial of service or any other unspecified impact via a crafted MAT image file.

For Debian 8 'Jessie', these problems have been fixed in version 8:6.8.9.9-5+deb8u18.

We recommend that you upgrade your imagemagick packages.

NOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

ID	Name	Product	Family	Severity
132785	Fedora 30 : GraphicsMagick (2019-f12cb1ddab)	Nessus	Fedora Local Security Checks	medium
132779	Fedora 31 : GraphicsMagick (2019-210b0a6e4f)	Nessus	Fedora Local Security Checks	medium
131115	openSUSE Security Update : ImageMagick (openSUSE-2019-2519)	Nessus	SuSE Local Security Checks	medium
131072	Ubuntu 16.04 LTS / 18.04 LTS / 19.04 / 19.10 : imagemagick vulnerabilities (USN-4192-1)	Nessus	Ubuntu Local Security Checks	medium
131067	SUSE SLES12 Security Update : ImageMagick (SUSE-SU-2019:2785-2)	Nessus	SuSE Local Security Checks	medium
131066	openSUSE Security Update : ImageMagick (openSUSE-2019-2515)	Nessus	SuSE Local Security Checks	medium
130584	SUSE SLED15 / SLES15 Security Update : ImageMagick (SUSE-SU-2019:2896-1)	Nessus	SuSE Local Security Checks	medium
130344	SUSE SLED12 / SLES12 Security Update : ImageMagick (SUSE-SU-2019:2785-1)	Nessus	SuSE Local Security Checks	medium
130133	Debian DLA-1968-1 : imagemagick security update	Nessus	Debian Local Security Checks	medium

CVE-2019-15139

Description

References

Details

Risk Information

CVSS v2.0

CVSS v3.0

Vulnerable Software

Configuration 1

Tenable Plugins