[ubuntu/xenial-updates] imagemagick 8:6.8.9.9-7ubuntu5.16 (Accepted)

Ubuntu Archive Robot cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk
Tue Dec 15 17:58:29 UTC 2020


imagemagick (8:6.8.9.9-7ubuntu5.16) xenial-security; urgency=medium

  * SECURITY UPDATE: heap-based buffer overflow
    - debian/patches/CVE-2019-19948.patch: Fix heap-based buffer overflow in
      coders/sgi.c.
    - debian/patches/CVE-2019-19949.patch: Fix heap-based buffer overflow in
      coders/png.c.
    - CVE-2019-19948
    - CVE-2019-19949
  * SECURITY UPDATE: division by zero
    - debian/patches/CVE-2020-27560.patch: Change division to multiplication in
      OptimizeLayerFrames in magick/layer.c
    - CVE-2020-27560

Date: 2020-12-04 21:33:14.692262+00:00
Changed-By: Avital Ostromich <avital.ostromich at canonical.com>
Signed-By: Ubuntu Archive Robot <cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk>
https://launchpad.net/ubuntu/+source/imagemagick/8:6.8.9.9-7ubuntu5.16
-------------- next part --------------
Sorry, changesfile not available.


More information about the Xenial-changes mailing list