Debian DLA-953-1 : graphicsmagick security update
Medium Nessus Plugin ID 100473
SynopsisThe remote Debian host is missing a security update.
DescriptionChris Evans discovered that graphicsmagick used uninitialized memory in the RLE decoder, allowing an remote attacker to leak sensitive information from process memory space.
More information are available at:
For Debian 7 'Wheezy', these problems have been fixed in version 1.3.16-1.1+deb7u7.
We recommend that you upgrade your graphicsmagick packages.
NOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
SolutionUpgrade the affected packages.