[ubuntu/kinetic-security] imagemagick 8: (Accepted)

Nishit Majithia nishit.majithia at canonical.com
Tue Jul 4 09:25:23 UTC 2023

imagemagick (8: kinetic-security; urgency=medium

  * SECURITY UPDATE: heap-based buffer overflow issue
    - debian/patches/CVE-2021-3610.patch: eliminate heap buffer overflow
    - debian/patches/CVE-2023-3428.patch: fix heap buffer overflow
    - CVE-2021-3610
    - CVE-2023-3428
  * SECURITY UPDATE: DoS while processing crafted SVG files
    - debian/patches/CVE-2023-1289*.patch: erecursion detection
    - CVE-2023-1289
  * SECURITY UPDATE: out-of-bound read issue
    - debian/patches/CVE-2023-1906.patch: fix possible heap buffer overflow
    - CVE-2023-1906
  * SECURITY UPDATE: stack-based buffer overflow issue
    - debian/patches/CVE-2023-3195.patch: fix stack overflow when parsing
      malicious tiff image
    - CVE-2023-3195
  * SECURITY UPDATE: integer overflow vulnerability
    - debian/patches/CVE-2023-34151*.patch: properly cast double to size_t
    - CVE-2023-34151

Date: 2023-07-03 10:34:07.733995+00:00
Changed-By: Nishit Majithia <nishit.majithia at canonical.com>
-------------- next part --------------
Sorry, changesfile not available.

More information about the kinetic-changes mailing list