Security update for GraphicsMagick SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2018:0733-1 Final 1 1 2018-03-18T10:37:58Z current 2018-03-18T10:37:58Z 2018-03-18T10:37:58Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for GraphicsMagick This update for GraphicsMagick fixes the following issues: - CVE-2017-18230: Specially crafted CINEON images may have caused a Null pointer dereference (boo#1085233) - CVE-2017-16353: Specially crafted MIFF images could have allowed for information disclosure (boo#1066170) - CVE-2017-16352: Specially crafted MIFF images may have caused a heap-based buffer overflow (boo#1066168) - CVE-2017-14314: Specially crafted image files may have caused a denial of service (boo#1058630) - CVE-2017-14505: Specially crafted image files may have caused a Null pointer dereference (boo#1059735) - CVE-2017-15016: Specially crafted EMF images may have caused a Null pointer dereference (boo#1082291) - CVE-2017-15017: Specially crafted MSG images may have caused a Null pointer dereference (boo#1082283) - CVE-2017-18219: Specially crafted image files may have been used to cause an application crash (boo#1084060) - CVE-2017-18220: Specially crafted PNG images may have been used to cause a denial of service (boo#1084062) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/opensuse-updates/2018-03/msg00065.html E-Mail link for openSUSE-SU-2018:0733-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Leap 42.3 GraphicsMagick-1.3.25-79.1 GraphicsMagick-devel-1.3.25-79.1 libGraphicsMagick++-Q16-12-1.3.25-79.1 libGraphicsMagick++-devel-1.3.25-79.1 libGraphicsMagick-Q16-3-1.3.25-79.1 libGraphicsMagick3-config-1.3.25-79.1 libGraphicsMagickWand-Q16-2-1.3.25-79.1 perl-GraphicsMagick-1.3.25-79.1 GraphicsMagick-1.3.25-79.1 as a component of openSUSE Leap 42.3 GraphicsMagick-devel-1.3.25-79.1 as a component of openSUSE Leap 42.3 libGraphicsMagick++-Q16-12-1.3.25-79.1 as a component of openSUSE Leap 42.3 libGraphicsMagick++-devel-1.3.25-79.1 as a component of openSUSE Leap 42.3 libGraphicsMagick-Q16-3-1.3.25-79.1 as a component of openSUSE Leap 42.3 libGraphicsMagick3-config-1.3.25-79.1 as a component of openSUSE Leap 42.3 libGraphicsMagickWand-Q16-2-1.3.25-79.1 as a component of openSUSE Leap 42.3 perl-GraphicsMagick-1.3.25-79.1 as a component of openSUSE Leap 42.3 Off-by-one error in the DrawImage function in magick/render.c in GraphicsMagick 1.3.26 allows remote attackers to cause a denial of service (DrawDashPolygon heap-based buffer over-read and application crash) via a crafted file. CVE-2017-14314 openSUSE Leap 42.3:GraphicsMagick-1.3.25-79.1 openSUSE Leap 42.3:GraphicsMagick-devel-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick++-Q16-12-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick++-devel-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick-Q16-3-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick3-config-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagickWand-Q16-2-1.3.25-79.1 openSUSE Leap 42.3:perl-GraphicsMagick-1.3.25-79.1 low Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-03/msg00065.html https://www.suse.com/security/cve/CVE-2017-14314.html CVE-2017-14314 https://bugzilla.suse.com/1058630 SUSE Bug 1058630 DrawGetStrokeDashArray in wand/drawing-wand.c in ImageMagick 7.0.7-1 mishandles certain NULL arrays, which allows attackers to perform Denial of Service (NULL pointer dereference and application crash in AcquireQuantumMemory within MagickCore/memory.c) by providing a crafted Image File as input. CVE-2017-14505 openSUSE Leap 42.3:GraphicsMagick-1.3.25-79.1 openSUSE Leap 42.3:GraphicsMagick-devel-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick++-Q16-12-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick++-devel-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick-Q16-3-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick3-config-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagickWand-Q16-2-1.3.25-79.1 openSUSE Leap 42.3:perl-GraphicsMagick-1.3.25-79.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-03/msg00065.html https://www.suse.com/security/cve/CVE-2017-14505.html CVE-2017-14505 https://bugzilla.suse.com/1059735 SUSE Bug 1059735 ImageMagick 7.0.7-0 Q16 has a NULL pointer dereference vulnerability in ReadEnhMetaFile in coders/emf.c. CVE-2017-15016 openSUSE Leap 42.3:GraphicsMagick-1.3.25-79.1 openSUSE Leap 42.3:GraphicsMagick-devel-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick++-Q16-12-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick++-devel-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick-Q16-3-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick3-config-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagickWand-Q16-2-1.3.25-79.1 openSUSE Leap 42.3:perl-GraphicsMagick-1.3.25-79.1 low Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-03/msg00065.html https://www.suse.com/security/cve/CVE-2017-15016.html CVE-2017-15016 https://bugzilla.suse.com/1082291 SUSE Bug 1082291 ImageMagick 7.0.7-0 Q16 has a NULL pointer dereference vulnerability in ReadOneMNGImage in coders/png.c. CVE-2017-15017 openSUSE Leap 42.3:GraphicsMagick-1.3.25-79.1 openSUSE Leap 42.3:GraphicsMagick-devel-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick++-Q16-12-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick++-devel-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick-Q16-3-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick3-config-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagickWand-Q16-2-1.3.25-79.1 openSUSE Leap 42.3:perl-GraphicsMagick-1.3.25-79.1 low Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-03/msg00065.html https://www.suse.com/security/cve/CVE-2017-15017.html CVE-2017-15017 https://bugzilla.suse.com/1082283 SUSE Bug 1082283 GraphicsMagick 1.3.26 is vulnerable to a heap-based buffer overflow vulnerability found in the "Display visual image directory" feature of the DescribeImage() function of the magick/describe.c file. One possible way to trigger the vulnerability is to run the identify command on a specially crafted MIFF format file with the verbose flag. CVE-2017-16352 openSUSE Leap 42.3:GraphicsMagick-1.3.25-79.1 openSUSE Leap 42.3:GraphicsMagick-devel-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick++-Q16-12-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick++-devel-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick-Q16-3-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick3-config-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagickWand-Q16-2-1.3.25-79.1 openSUSE Leap 42.3:perl-GraphicsMagick-1.3.25-79.1 moderate 5.1 AV:N/AC:H/Au:N/C:P/I:P/A:P Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-03/msg00065.html https://www.suse.com/security/cve/CVE-2017-16352.html CVE-2017-16352 https://bugzilla.suse.com/1066168 SUSE Bug 1066168 https://bugzilla.suse.com/1066170 SUSE Bug 1066170 GraphicsMagick 1.3.26 is vulnerable to a memory information disclosure vulnerability found in the DescribeImage function of the magick/describe.c file, because of a heap-based buffer over-read. The portion of the code containing the vulnerability is responsible for printing the IPTC Profile information contained in the image. This vulnerability can be triggered with a specially crafted MIFF file. There is an out-of-bounds buffer dereference because certain increments are never checked. CVE-2017-16353 openSUSE Leap 42.3:GraphicsMagick-1.3.25-79.1 openSUSE Leap 42.3:GraphicsMagick-devel-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick++-Q16-12-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick++-devel-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick-Q16-3-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick3-config-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagickWand-Q16-2-1.3.25-79.1 openSUSE Leap 42.3:perl-GraphicsMagick-1.3.25-79.1 moderate 5 AV:N/AC:L/Au:N/C:P/I:N/A:N Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-03/msg00065.html https://www.suse.com/security/cve/CVE-2017-16353.html CVE-2017-16353 https://bugzilla.suse.com/1066170 SUSE Bug 1066170 An issue was discovered in GraphicsMagick 1.3.26. An allocation failure vulnerability was found in the function ReadOnePNGImage in coders/png.c, which allows attackers to cause a denial of service via a crafted file that triggers an attempt at a large png_pixels array allocation. CVE-2017-18219 openSUSE Leap 42.3:GraphicsMagick-1.3.25-79.1 openSUSE Leap 42.3:GraphicsMagick-devel-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick++-Q16-12-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick++-devel-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick-Q16-3-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick3-config-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagickWand-Q16-2-1.3.25-79.1 openSUSE Leap 42.3:perl-GraphicsMagick-1.3.25-79.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-03/msg00065.html https://www.suse.com/security/cve/CVE-2017-18219.html CVE-2017-18219 https://bugzilla.suse.com/1084060 SUSE Bug 1084060 The ReadOneJNGImage and ReadJNGImage functions in coders/png.c in GraphicsMagick 1.3.26 allow remote attackers to cause a denial of service (magick/blob.c CloseBlob use-after-free) or possibly have unspecified other impact via a crafted file, a related issue to CVE-2017-11403. CVE-2017-18220 openSUSE Leap 42.3:GraphicsMagick-1.3.25-79.1 openSUSE Leap 42.3:GraphicsMagick-devel-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick++-Q16-12-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick++-devel-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick-Q16-3-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick3-config-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagickWand-Q16-2-1.3.25-79.1 openSUSE Leap 42.3:perl-GraphicsMagick-1.3.25-79.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-03/msg00065.html https://www.suse.com/security/cve/CVE-2017-18220.html CVE-2017-18220 https://bugzilla.suse.com/1084062 SUSE Bug 1084062 An issue was discovered in GraphicsMagick 1.3.26. A NULL pointer dereference vulnerability was found in the function ReadCINEONImage in coders/cineon.c, which allows attackers to cause a denial of service via a crafted file. CVE-2017-18230 openSUSE Leap 42.3:GraphicsMagick-1.3.25-79.1 openSUSE Leap 42.3:GraphicsMagick-devel-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick++-Q16-12-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick++-devel-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick-Q16-3-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagick3-config-1.3.25-79.1 openSUSE Leap 42.3:libGraphicsMagickWand-Q16-2-1.3.25-79.1 openSUSE Leap 42.3:perl-GraphicsMagick-1.3.25-79.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-03/msg00065.html https://www.suse.com/security/cve/CVE-2017-18230.html CVE-2017-18230 https://bugzilla.suse.com/1085233 SUSE Bug 1085233