Debian DLA-1282-1 : graphicsmagick security update
Medium Nessus Plugin ID 106809
SynopsisThe remote Debian host is missing a security update.
DescriptionA denial of service vulnerability has been discovered in graphicsmagick, a collection of image processing tools and associated libraries.
A specially crafted file can be used to produce a denial of service (heap overwrite) or possible other unspecified impact by exploiting a defect related to unused pixel staging area in the AcquireCacheNexus function in magick/pixel_cache.c.
For Debian 7 'Wheezy', these problems have been fixed in version 1.3.16-1.1+deb7u18.
We recommend that you upgrade your graphicsmagick packages.
NOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
SolutionUpgrade the affected packages.