Security update for ImageMagick SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2018:0893-1 Final 1 1 2018-04-06T16:51:32Z current 2018-04-06T16:51:32Z 2018-04-06T16:51:32Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for ImageMagick This update for ImageMagick fixes several issues. These security issues were fixed: - CVE-2018-8804: The WriteEPTImage function allowed remote attackers to cause a denial of service (double free and application crash) or possibly have unspecified other impact via a crafted file (bsc#1086011). - CVE-2017-11524: The WriteBlob function allowed remote attackers to cause a denial of service (assertion failure and application exit) via a crafted file (bsc#1050087). - CVE-2017-18209: Prevent NULL pointer dereference in the GetOpenCLCachedFilesDirectory function caused by a memory allocation result that was not checked, related to GetOpenCLCacheDirectory (bsc#1083628). - CVE-2017-18211: Prevent NULL pointer dereference in the function saveBinaryCLProgram caused by a program-lookup result not being checked, related to CacheOpenCLKernel (bsc#1083634). - CVE-2017-9500: Prevent assertion failure in the function ResetImageProfileIterator, which allowed attackers to cause a denial of service via a crafted file (bsc#1043290). - CVE-2017-14739: The AcquireResampleFilterThreadSet function mishandled failed memory allocation, which allowed remote attackers to cause a denial of service (NULL Pointer Dereference in DistortImage in MagickCore/distort.c, and application crash) via unspecified vectors (bsc#1060382). - CVE-2017-16353: Prevent memory information disclosure in the DescribeImage function caused by a heap-based buffer over-read. The portion of the code containing the vulnerability is responsible for printing the IPTC Profile information contained in the image. This vulnerability can be triggered with a specially crafted MIFF file. There is an out-of-bounds buffer dereference because certain increments were never checked (bsc#1066170). - CVE-2017-16352: Prevent a heap-based buffer overflow in the 'Display visual image directory' feature of the DescribeImage() function. One possible way to trigger the vulnerability is to run the identify command on a specially crafted MIFF format file with the verbose flag (bsc#1066168). - CVE-2017-14314: Prevent off-by-one error in the DrawImage function that allowed remote attackers to cause a denial of service (DrawDashPolygon heap-based buffer over-read and application crash) via a crafted file (bsc#1058630). - CVE-2017-13768: Prevent NULL pointer dereference in the IdentifyImage function that allowed an attacker to perform denial of service by sending a crafted image file (bsc#1056434). - CVE-2017-14505: Fixed handling of NULL arrays, which allowed attackers to perform Denial of Service (NULL pointer dereference and application crash in AcquireQuantumMemory within MagickCore/memory.c) by providing a crafted Image File as input (bsc#1059735). - CVE-2018-7470: The IsWEBPImageLossless function allowed attackers to cause a denial of service (segmentation violation) via a crafted file (bsc#1082837). - CVE-2018-7443: The ReadTIFFImage function did not properly validate the amount of image data in a file, which allowed remote attackers to cause a denial of service (memory allocation failure in the AcquireMagickMemory function in MagickCore/memory.c) (bsc#1082792). - CVE-2017-15016: Prevent NULL pointer dereference vulnerability in ReadEnhMetaFile allowing for denial of service (bsc#1082291). - CVE-2017-15017: Prevent NULL pointer dereference vulnerability in ReadOneMNGImage allowing for denial of service (bsc#1082283). - CVE-2017-12692: The ReadVIFFImage function allowed remote attackers to cause a denial of service (memory consumption) via a crafted VIFF file (bsc#1082362). - CVE-2017-12693: The ReadBMPImage function allowed remote attackers to cause a denial of service (memory consumption) via a crafted BMP file (bsc#1082348). This update was imported from the SUSE:SLE-12:Update update project. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/opensuse-updates/2018-04/msg00012.html E-Mail link for openSUSE-SU-2018:0893-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Leap 42.3 ImageMagick-6.8.8.1-58.1 ImageMagick-devel-6.8.8.1-58.1 ImageMagick-devel-32bit-6.8.8.1-58.1 ImageMagick-doc-6.8.8.1-58.1 ImageMagick-extra-6.8.8.1-58.1 libMagick++-6_Q16-3-6.8.8.1-58.1 libMagick++-6_Q16-3-32bit-6.8.8.1-58.1 libMagick++-devel-6.8.8.1-58.1 libMagick++-devel-32bit-6.8.8.1-58.1 libMagickCore-6_Q16-1-6.8.8.1-58.1 libMagickCore-6_Q16-1-32bit-6.8.8.1-58.1 libMagickWand-6_Q16-1-6.8.8.1-58.1 libMagickWand-6_Q16-1-32bit-6.8.8.1-58.1 perl-PerlMagick-6.8.8.1-58.1 ImageMagick-6.8.8.1-58.1 as a component of openSUSE Leap 42.3 ImageMagick-devel-6.8.8.1-58.1 as a component of openSUSE Leap 42.3 ImageMagick-devel-32bit-6.8.8.1-58.1 as a component of openSUSE Leap 42.3 ImageMagick-doc-6.8.8.1-58.1 as a component of openSUSE Leap 42.3 ImageMagick-extra-6.8.8.1-58.1 as a component of openSUSE Leap 42.3 libMagick++-6_Q16-3-6.8.8.1-58.1 as a component of openSUSE Leap 42.3 libMagick++-6_Q16-3-32bit-6.8.8.1-58.1 as a component of openSUSE Leap 42.3 libMagick++-devel-6.8.8.1-58.1 as a component of openSUSE Leap 42.3 libMagick++-devel-32bit-6.8.8.1-58.1 as a component of openSUSE Leap 42.3 libMagickCore-6_Q16-1-6.8.8.1-58.1 as a component of openSUSE Leap 42.3 libMagickCore-6_Q16-1-32bit-6.8.8.1-58.1 as a component of openSUSE Leap 42.3 libMagickWand-6_Q16-1-6.8.8.1-58.1 as a component of openSUSE Leap 42.3 libMagickWand-6_Q16-1-32bit-6.8.8.1-58.1 as a component of openSUSE Leap 42.3 perl-PerlMagick-6.8.8.1-58.1 as a component of openSUSE Leap 42.3 The WriteBlob function in MagickCore/blob.c in ImageMagick before 6.9.8-10 and 7.x before 7.6.0-0 allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted file. CVE-2017-11524 openSUSE Leap 42.3:ImageMagick-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-devel-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-devel-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-doc-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-extra-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-6_Q16-3-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-6_Q16-3-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-devel-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-devel-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickCore-6_Q16-1-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickCore-6_Q16-1-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickWand-6_Q16-1-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickWand-6_Q16-1-6.8.8.1-58.1 openSUSE Leap 42.3:perl-PerlMagick-6.8.8.1-58.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-04/msg00012.html https://www.suse.com/security/cve/CVE-2017-11524.html CVE-2017-11524 https://bugzilla.suse.com/1050087 SUSE Bug 1050087 The ReadVIFFImage function in coders/viff.c in ImageMagick 7.0.6-6 allows remote attackers to cause a denial of service (memory consumption) via a crafted VIFF file. CVE-2017-12692 openSUSE Leap 42.3:ImageMagick-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-devel-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-devel-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-doc-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-extra-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-6_Q16-3-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-6_Q16-3-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-devel-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-devel-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickCore-6_Q16-1-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickCore-6_Q16-1-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickWand-6_Q16-1-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickWand-6_Q16-1-6.8.8.1-58.1 openSUSE Leap 42.3:perl-PerlMagick-6.8.8.1-58.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-04/msg00012.html https://www.suse.com/security/cve/CVE-2017-12692.html CVE-2017-12692 https://bugzilla.suse.com/1053955 SUSE Bug 1053955 https://bugzilla.suse.com/1082362 SUSE Bug 1082362 The ReadBMPImage function in coders/bmp.c in ImageMagick 7.0.6-6 allows remote attackers to cause a denial of service (memory consumption) via a crafted BMP file. CVE-2017-12693 openSUSE Leap 42.3:ImageMagick-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-devel-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-devel-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-doc-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-extra-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-6_Q16-3-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-6_Q16-3-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-devel-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-devel-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickCore-6_Q16-1-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickCore-6_Q16-1-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickWand-6_Q16-1-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickWand-6_Q16-1-6.8.8.1-58.1 openSUSE Leap 42.3:perl-PerlMagick-6.8.8.1-58.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-04/msg00012.html https://www.suse.com/security/cve/CVE-2017-12693.html CVE-2017-12693 https://bugzilla.suse.com/1053955 SUSE Bug 1053955 https://bugzilla.suse.com/1082348 SUSE Bug 1082348 Null Pointer Dereference in the IdentifyImage function in MagickCore/identify.c in ImageMagick through 7.0.6-10 allows an attacker to perform denial of service by sending a crafted image file. CVE-2017-13768 openSUSE Leap 42.3:ImageMagick-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-devel-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-devel-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-doc-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-extra-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-6_Q16-3-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-6_Q16-3-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-devel-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-devel-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickCore-6_Q16-1-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickCore-6_Q16-1-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickWand-6_Q16-1-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickWand-6_Q16-1-6.8.8.1-58.1 openSUSE Leap 42.3:perl-PerlMagick-6.8.8.1-58.1 moderate 4 AV:N/AC:L/Au:S/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-04/msg00012.html https://www.suse.com/security/cve/CVE-2017-13768.html CVE-2017-13768 https://bugzilla.suse.com/1056434 SUSE Bug 1056434 Off-by-one error in the DrawImage function in magick/render.c in GraphicsMagick 1.3.26 allows remote attackers to cause a denial of service (DrawDashPolygon heap-based buffer over-read and application crash) via a crafted file. CVE-2017-14314 openSUSE Leap 42.3:ImageMagick-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-devel-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-devel-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-doc-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-extra-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-6_Q16-3-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-6_Q16-3-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-devel-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-devel-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickCore-6_Q16-1-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickCore-6_Q16-1-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickWand-6_Q16-1-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickWand-6_Q16-1-6.8.8.1-58.1 openSUSE Leap 42.3:perl-PerlMagick-6.8.8.1-58.1 low Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-04/msg00012.html https://www.suse.com/security/cve/CVE-2017-14314.html CVE-2017-14314 https://bugzilla.suse.com/1058630 SUSE Bug 1058630 DrawGetStrokeDashArray in wand/drawing-wand.c in ImageMagick 7.0.7-1 mishandles certain NULL arrays, which allows attackers to perform Denial of Service (NULL pointer dereference and application crash in AcquireQuantumMemory within MagickCore/memory.c) by providing a crafted Image File as input. CVE-2017-14505 openSUSE Leap 42.3:ImageMagick-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-devel-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-devel-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-doc-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-extra-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-6_Q16-3-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-6_Q16-3-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-devel-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-devel-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickCore-6_Q16-1-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickCore-6_Q16-1-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickWand-6_Q16-1-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickWand-6_Q16-1-6.8.8.1-58.1 openSUSE Leap 42.3:perl-PerlMagick-6.8.8.1-58.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-04/msg00012.html https://www.suse.com/security/cve/CVE-2017-14505.html CVE-2017-14505 https://bugzilla.suse.com/1059735 SUSE Bug 1059735 The AcquireResampleFilterThreadSet function in magick/resample-private.h in ImageMagick 7.0.7-4 mishandles failed memory allocation, which allows remote attackers to cause a denial of service (NULL Pointer Dereference in DistortImage in MagickCore/distort.c, and application crash) via unspecified vectors. CVE-2017-14739 openSUSE Leap 42.3:ImageMagick-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-devel-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-devel-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-doc-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-extra-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-6_Q16-3-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-6_Q16-3-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-devel-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-devel-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickCore-6_Q16-1-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickCore-6_Q16-1-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickWand-6_Q16-1-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickWand-6_Q16-1-6.8.8.1-58.1 openSUSE Leap 42.3:perl-PerlMagick-6.8.8.1-58.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-04/msg00012.html https://www.suse.com/security/cve/CVE-2017-14739.html CVE-2017-14739 https://bugzilla.suse.com/1060382 SUSE Bug 1060382 ImageMagick 7.0.7-0 Q16 has a NULL pointer dereference vulnerability in ReadEnhMetaFile in coders/emf.c. CVE-2017-15016 openSUSE Leap 42.3:ImageMagick-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-devel-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-devel-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-doc-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-extra-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-6_Q16-3-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-6_Q16-3-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-devel-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-devel-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickCore-6_Q16-1-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickCore-6_Q16-1-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickWand-6_Q16-1-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickWand-6_Q16-1-6.8.8.1-58.1 openSUSE Leap 42.3:perl-PerlMagick-6.8.8.1-58.1 low Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-04/msg00012.html https://www.suse.com/security/cve/CVE-2017-15016.html CVE-2017-15016 https://bugzilla.suse.com/1082291 SUSE Bug 1082291 ImageMagick 7.0.7-0 Q16 has a NULL pointer dereference vulnerability in ReadOneMNGImage in coders/png.c. CVE-2017-15017 openSUSE Leap 42.3:ImageMagick-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-devel-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-devel-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-doc-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-extra-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-6_Q16-3-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-6_Q16-3-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-devel-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-devel-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickCore-6_Q16-1-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickCore-6_Q16-1-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickWand-6_Q16-1-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickWand-6_Q16-1-6.8.8.1-58.1 openSUSE Leap 42.3:perl-PerlMagick-6.8.8.1-58.1 low Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-04/msg00012.html https://www.suse.com/security/cve/CVE-2017-15017.html CVE-2017-15017 https://bugzilla.suse.com/1082283 SUSE Bug 1082283 GraphicsMagick 1.3.26 is vulnerable to a heap-based buffer overflow vulnerability found in the "Display visual image directory" feature of the DescribeImage() function of the magick/describe.c file. One possible way to trigger the vulnerability is to run the identify command on a specially crafted MIFF format file with the verbose flag. CVE-2017-16352 openSUSE Leap 42.3:ImageMagick-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-devel-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-devel-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-doc-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-extra-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-6_Q16-3-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-6_Q16-3-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-devel-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-devel-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickCore-6_Q16-1-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickCore-6_Q16-1-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickWand-6_Q16-1-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickWand-6_Q16-1-6.8.8.1-58.1 openSUSE Leap 42.3:perl-PerlMagick-6.8.8.1-58.1 moderate 5.1 AV:N/AC:H/Au:N/C:P/I:P/A:P Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-04/msg00012.html https://www.suse.com/security/cve/CVE-2017-16352.html CVE-2017-16352 https://bugzilla.suse.com/1066168 SUSE Bug 1066168 https://bugzilla.suse.com/1066170 SUSE Bug 1066170 GraphicsMagick 1.3.26 is vulnerable to a memory information disclosure vulnerability found in the DescribeImage function of the magick/describe.c file, because of a heap-based buffer over-read. The portion of the code containing the vulnerability is responsible for printing the IPTC Profile information contained in the image. This vulnerability can be triggered with a specially crafted MIFF file. There is an out-of-bounds buffer dereference because certain increments are never checked. CVE-2017-16353 openSUSE Leap 42.3:ImageMagick-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-devel-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-devel-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-doc-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-extra-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-6_Q16-3-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-6_Q16-3-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-devel-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-devel-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickCore-6_Q16-1-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickCore-6_Q16-1-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickWand-6_Q16-1-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickWand-6_Q16-1-6.8.8.1-58.1 openSUSE Leap 42.3:perl-PerlMagick-6.8.8.1-58.1 moderate 5 AV:N/AC:L/Au:N/C:P/I:N/A:N Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-04/msg00012.html https://www.suse.com/security/cve/CVE-2017-16353.html CVE-2017-16353 https://bugzilla.suse.com/1066170 SUSE Bug 1066170 In the GetOpenCLCachedFilesDirectory function in magick/opencl.c in ImageMagick 7.0.7, a NULL pointer dereference vulnerability occurs because a memory allocation result is not checked, related to GetOpenCLCacheDirectory. CVE-2017-18209 openSUSE Leap 42.3:ImageMagick-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-devel-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-devel-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-doc-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-extra-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-6_Q16-3-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-6_Q16-3-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-devel-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-devel-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickCore-6_Q16-1-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickCore-6_Q16-1-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickWand-6_Q16-1-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickWand-6_Q16-1-6.8.8.1-58.1 openSUSE Leap 42.3:perl-PerlMagick-6.8.8.1-58.1 low Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-04/msg00012.html https://www.suse.com/security/cve/CVE-2017-18209.html CVE-2017-18209 https://bugzilla.suse.com/1083628 SUSE Bug 1083628 In ImageMagick 7.0.7, a NULL pointer dereference vulnerability was found in the function saveBinaryCLProgram in magick/opencl.c because a program-lookup result is not checked, related to CacheOpenCLKernel. CVE-2017-18211 openSUSE Leap 42.3:ImageMagick-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-devel-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-devel-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-doc-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-extra-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-6_Q16-3-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-6_Q16-3-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-devel-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-devel-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickCore-6_Q16-1-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickCore-6_Q16-1-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickWand-6_Q16-1-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickWand-6_Q16-1-6.8.8.1-58.1 openSUSE Leap 42.3:perl-PerlMagick-6.8.8.1-58.1 low Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-04/msg00012.html https://www.suse.com/security/cve/CVE-2017-18211.html CVE-2017-18211 https://bugzilla.suse.com/1083634 SUSE Bug 1083634 In ImageMagick 7.0.5-8 Q16, an assertion failure was found in the function ResetImageProfileIterator, which allows attackers to cause a denial of service via a crafted file. CVE-2017-9500 openSUSE Leap 42.3:ImageMagick-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-devel-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-devel-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-doc-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-extra-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-6_Q16-3-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-6_Q16-3-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-devel-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-devel-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickCore-6_Q16-1-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickCore-6_Q16-1-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickWand-6_Q16-1-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickWand-6_Q16-1-6.8.8.1-58.1 openSUSE Leap 42.3:perl-PerlMagick-6.8.8.1-58.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-04/msg00012.html https://www.suse.com/security/cve/CVE-2017-9500.html CVE-2017-9500 https://bugzilla.suse.com/1043290 SUSE Bug 1043290 The ReadTIFFImage function in coders/tiff.c in ImageMagick 7.0.7-23 Q16 does not properly validate the amount of image data in a file, which allows remote attackers to cause a denial of service (memory allocation failure in the AcquireMagickMemory function in MagickCore/memory.c). CVE-2018-7443 openSUSE Leap 42.3:ImageMagick-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-devel-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-devel-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-doc-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-extra-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-6_Q16-3-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-6_Q16-3-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-devel-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-devel-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickCore-6_Q16-1-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickCore-6_Q16-1-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickWand-6_Q16-1-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickWand-6_Q16-1-6.8.8.1-58.1 openSUSE Leap 42.3:perl-PerlMagick-6.8.8.1-58.1 low Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-04/msg00012.html https://www.suse.com/security/cve/CVE-2018-7443.html CVE-2018-7443 https://bugzilla.suse.com/1075944 SUSE Bug 1075944 https://bugzilla.suse.com/1082792 SUSE Bug 1082792 An issue was discovered in ImageMagick 7.0.7-22 Q16. The IsWEBPImageLossless function in coders/webp.c allows attackers to cause a denial of service (segmentation violation) via a crafted file. CVE-2018-7470 openSUSE Leap 42.3:ImageMagick-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-devel-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-devel-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-doc-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-extra-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-6_Q16-3-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-6_Q16-3-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-devel-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-devel-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickCore-6_Q16-1-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickCore-6_Q16-1-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickWand-6_Q16-1-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickWand-6_Q16-1-6.8.8.1-58.1 openSUSE Leap 42.3:perl-PerlMagick-6.8.8.1-58.1 low Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-04/msg00012.html https://www.suse.com/security/cve/CVE-2018-7470.html CVE-2018-7470 https://bugzilla.suse.com/1082837 SUSE Bug 1082837 WriteEPTImage in coders/ept.c in ImageMagick 7.0.7-25 Q16 allows remote attackers to cause a denial of service (MagickCore/memory.c double free and application crash) or possibly have unspecified other impact via a crafted file. CVE-2018-8804 openSUSE Leap 42.3:ImageMagick-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-devel-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-devel-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-doc-6.8.8.1-58.1 openSUSE Leap 42.3:ImageMagick-extra-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-6_Q16-3-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-6_Q16-3-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-devel-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagick++-devel-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickCore-6_Q16-1-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickCore-6_Q16-1-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickWand-6_Q16-1-32bit-6.8.8.1-58.1 openSUSE Leap 42.3:libMagickWand-6_Q16-1-6.8.8.1-58.1 openSUSE Leap 42.3:perl-PerlMagick-6.8.8.1-58.1 low Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-04/msg00012.html https://www.suse.com/security/cve/CVE-2018-8804.html CVE-2018-8804 https://bugzilla.suse.com/1086011 SUSE Bug 1086011