openSUSE Security Update : GraphicsMagick (openSUSE-2018-1045)
Medium Nessus Plugin ID 117693
SynopsisThe remote openSUSE host is missing a security update.
DescriptionThis update for GraphicsMagick fixes the following security issue :
- CVE-2018-16750: Prevent memory leak in the formatIPTCfromBuffer function (bsc#1108283).
An earlier update added a change that also fixed this issues that was unknown at the time of release :
- CVE-2018-16749: Added missing NULL check in ReadOneJNGImage that allowed an attacker to cause a denial of service (WriteBlob assertion failure and application exit) via a crafted file (bsc#1108282).
SolutionUpdate the affected GraphicsMagick packages.