openSUSE Security Update : GraphicsMagick (openSUSE-2018-122)
Medium Nessus Plugin ID 106552
SynopsisThe remote openSUSE host is missing a security update.
DescriptionThis update for GraphicsMagick fixes several issues.
These security issues were fixed :
- CVE-2017-13065: Prevent NULL pointer dereference in the function SVGStartElement (bsc#1055038)
- CVE-2018-5685: Prevent infinite loop and application hang in the ReadBMPImage function. Remote attackers could leverage this vulnerability to cause a denial of service via an image file with a crafted bit-field mask value (bsc#1075939)
- CVE-2017-18029: Prevent memory leak in the function ReadMATImage which allowed remote attackers to cause a denial of service via a crafted file (bsc#1076021).
- CVE-2017-18027: Prevent memory leak vulnerability in the function ReadMATImage which allowed remote attackers to cause a denial of service via a crafted file (bsc#1076051).
SolutionUpdate the affected GraphicsMagick packages.