Univention Bugzilla – Bug 57080
imagemagick: Multiple issues (5.0)
Last modified: 2024-02-28 13:17:32 CET
New Debian imagemagick 8:6.9.10.23+dfsg-2.1+deb10u6 fixes: This update addresses the following issues: 8:6.9.10.23+dfsg-2.1+deb10u6 (Fri, 19 Jan 2024 13:20:50 -0500) [ Bastien Roucariès ] * Fix a heap based overflow in TIFF coder. * Avoid a DOS with malformed TIFF file. * Avoid a memory leak in TIFF file coder. * Fix a non initialized value passed to TIFFGetField(). * Fix buffer overrun in TIFF coder. * In case of exception bail out early in TIFF file handling. * Fix unintialised value in TIFF coder. * Raise exception when image could not be read but no exception was raised in TIFF coder. * Fix CVE-2023-39978: a memory leak was present in Magick::Draw. * Mark rmagick test as flaky * Fix CVE-2023-1289: A vulnerability was discovered in ImageMagick where a specially created SVG file loads itself and causes a segmentation fault. This flaw allows a remote attacker to pass a specially crafted SVG file that leads to a segmentation fault, generating many trash files in "/tmp," resulting in a denial of service. When ImageMagick crashes, it generates a lot of trash files. These trash files can be large if the SVG file contains many render actions. * Fix CVE-2023-34151: A vulnerability was found in ImageMagick, due to undefined behaviors of casting double to size_t in svg, mvg and other coders. * Fix CVE-2023-5341: A heap use-after-free flaw was found in coders/bmp.c [ Santiago Ruano Rincón ] * Enable ARM builds in salsa-ci.yml
--- mirror/ftp/pool/main/i/imagemagick/imagemagick_6.9.10.23+dfsg-2.1+deb10u5.dsc +++ apt/ucs_5.0-0-errata5.0-6/source/imagemagick_6.9.10.23+dfsg-2.1+deb10u6.dsc @@ -1,3 +1,36 @@ +8:6.9.10.23+dfsg-2.1+deb10u6 [Fri, 19 Jan 2024 13:20:50 -0500] Bastien Roucariès <rouca@debian.org>: + + [ Bastien Roucariès ] + * Fix a heap based overflow in TIFF coder. + * Avoid a DOS with malformed TIFF file. + * Avoid a memory leak in TIFF file coder. + * Fix a non initialized value passed to TIFFGetField(). + * Fix buffer overrun in TIFF coder. + * In case of exception bail out early in TIFF file handling. + * Fix unintialised value in TIFF coder. + * Raise exception when image could not be read but no + exception was raised in TIFF coder. + * Fix CVE-2023-39978: a memory leak was present in + Magick::Draw. + * Mark rmagick test as flaky + * Fix CVE-2023-1289: A vulnerability was discovered + in ImageMagick where a specially created SVG file + loads itself and causes a segmentation fault. + This flaw allows a remote attacker to pass a + specially crafted SVG file that leads to a segmentation + fault, generating many trash files in "/tmp," resulting in + a denial of service. When ImageMagick crashes, it generates + a lot of trash files. These trash files can be large if the + SVG file contains many render actions. + * Fix CVE-2023-34151: A vulnerability was found in ImageMagick, + due to undefined behaviors of casting double to size_t in + svg, mvg and other coders. + * Fix CVE-2023-5341: A heap use-after-free flaw was found + in coders/bmp.c + + [ Santiago Ruano Rincón ] + * Enable ARM builds in salsa-ci.yml + 8:6.9.10.23+dfsg-2.1+deb10u5 [Sun, 21 May 2023 18:57:13 +0000] Bastien Roucariès <rouca@debian.org>: * Fix CVE-2021-20176: divide by zero in gem.c file. <http://piuparts.knut.univention.de/5.0-6/#8473100228463802925>
OK: bug OK: yaml OK: announce_errata OK: patch OK: piuparts [5.0-6] 41c2e4dc5c Bug #57080: imagemagick 8:6.9.10.23+dfsg-2.1+deb10u6 doc/errata/staging/imagemagick.yaml | 29 ++++++++++------------------- 1 file changed, 10 insertions(+), 19 deletions(-) [5.0-6] d366742d1f Bug #57080: imagemagick 8:6.9.10.23+dfsg-2.1+deb10u6 doc/errata/staging/imagemagick.yaml | 40 +++++++++++++++++++++++++++++++++++++ 1 file changed, 40 insertions(+)
<https://errata.software-univention.de/#/?erratum=5.0x965>