SynopsisThe remote openSUSE host is missing a security update.
DescriptionThis update for GraphicsMagick fixes the following issues :
Security issues fixed :
- CVE-2017-10794: When GraphicsMagick processed an RGB TIFF picture (with metadata indicating a single sample per pixel) in coders/tiff.c, a buffer overflow occured, related to QuantumTransferMode. (boo#1112392)
- CVE-2017-14997: GraphicsMagick allowed remote attackers to cause a denial of service (excessive memory allocation) because of an integer underflow in ReadPICTImage in coders/pict.c. (boo#1112399)
SolutionUpdate the affected GraphicsMagick packages.