You are here
Home > Preporuke > Sigurnosni nedostaci programskog paketa graphicsmagick

Sigurnosni nedostaci programskog paketa graphicsmagick

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LUB

==========================================================================
Ubuntu Security Notice USN-4207-1
December 03, 2019

graphicsmagick vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

– Ubuntu 18.04 LTS

Summary:

Several security issues were fixed in GraphicsMagick.

Software Description:
– graphicsmagick: collection of image processing tools

Details:

It was discovered that GraphicsMagick incorrectly handled certain image files.
An attacker could possibly use this issue to cause a denial of service or other
unspecified impact.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 18.04 LTS:
graphicsmagick 1.3.28-2ubuntu0.1
libgraphicsmagick++-q16-12 1.3.28-2ubuntu0.1
libgraphicsmagick-q16-3 1.3.28-2ubuntu0.1

In general, a standard system update will make all the necessary changes.

References:
https://usn.ubuntu.com/4207-1
CVE-2018-20184, CVE-2018-20185, CVE-2018-20189, CVE-2019-11005,
CVE-2019-11006, CVE-2019-11007, CVE-2019-11008, CVE-2019-11009,
CVE-2019-11010, CVE-2019-11473, CVE-2019-11474, CVE-2019-11505,
CVE-2019-11506

Package Information:
https://launchpad.net/ubuntu/+source/graphicsmagick/1.3.28-2ubuntu0.1
—–BEGIN PGP SIGNATURE—–
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=PD5J
—–END PGP SIGNATURE—–

ubuntu-security-announce mailing list
ubuntu-security-announce@lists.ubuntu.com
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce

==========================================================================
Ubuntu Security Notice USN-4206-1
December 02, 2019

graphicsmagick vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

– Ubuntu 16.04 LTS

Summary:

Several security issues were fixed in GraphicsMagick.

Software Description:
– graphicsmagick: collection of image processing tools

Details:

It was discovered that GraphicsMagick incorrectly handled certain image files.
An attacker could possibly use this issue to cause a denial of service.
(CVE-2017-10794, CVE-2017-10799, CVE-2017-11102, CVE-2017-11140,
CVE-2017-11403, CVE-2017-11636, CVE-2017-11637, CVE-2017-13147, CVE-2017-14042,
CVE-2017-6335)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 16.04 LTS:
graphicsmagick 1.3.23-1ubuntu0.2
libgraphicsmagick++-q16-12 1.3.23-1ubuntu0.2
libgraphicsmagick-q16-3 1.3.23-1ubuntu0.2

In general, a standard system update will make all the necessary changes.

References:
https://usn.ubuntu.com/4206-1
CVE-2017-10794, CVE-2017-10799, CVE-2017-11102, CVE-2017-11140,
CVE-2017-11403, CVE-2017-11636, CVE-2017-11637, CVE-2017-13147,
CVE-2017-14042, CVE-2017-6335

Package Information:
https://launchpad.net/ubuntu/+source/graphicsmagick/1.3.23-1ubuntu0.2
—–BEGIN PGP SIGNATURE—–
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=GLbV
—–END PGP SIGNATURE—–

AutorToni Vugdelija
Cert idNCERT-REF-2019-12-0001-ADV
CveCERT-CVE-DUMMY
ID izvornikaCERT-ORIGID-DUMMY
ProizvodCERT-DUMMY-PRODUCT
IzvorAdobe
Top
More in Preporuke
Sigurnosni nedostaci programskog paketa Red Hat Decision Manager

Otkriveni su sigurnosni nedostaci u programskom paketu Red Hat Decision Manager. Otkriveni nedostaci potencijalnim napadačima omogućuju izvođenje XSS napada. Savjetuje...

Close