[ubuntu/groovy-updates] imagemagick 8:6.9.10.23+dfsg-2.1ubuntu13.1 (Accepted)
Ubuntu Archive Robot
cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk
Tue Dec 15 17:58:34 UTC 2020
imagemagick (8:6.9.10.23+dfsg-2.1ubuntu13.1) groovy-security; urgency=medium
* SECURITY UPDATE: heap-based buffer overflow
- debian/patches/CVE-2019-19948.patch: Fix heap-based buffer overflow in
coders/sgi.c.
- debian/patches/CVE-2019-19949.patch: Fix heap-based buffer overflow in
coders/png.c.
- CVE-2019-19948
- CVE-2019-19949
* SECURITY UPDATE: division by zero
- debian/patches/CVE-2020-27560.patch: Change division to multiplication in
OptimizeLayerFrames in magick/layer.c
- CVE-2020-27560
Date: 2020-12-02 18:55:13.073597+00:00
Changed-By: Avital Ostromich <avital.ostromich at canonical.com>
Signed-By: Ubuntu Archive Robot <cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk>
https://launchpad.net/ubuntu/+source/imagemagick/8:6.9.10.23+dfsg-2.1ubuntu13.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Groovy-changes
mailing list