Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2021-45463

Due to the use of the system command in the Magick-Load op used by gegl an attacker is able to craft a command line path that is able to lead to the execution of arbitrary shell commands that impacts availability, confidentiality and integrity. (CVE-2021-45463)

Source

ALAS2-2022-1755

Amazon Linux 2 Security Advisory: ALAS-2022-1755
Advisory Release Date: 2022-03-01 17:40 Pacific
Advisory Updated Date: 2022-03-04 21:15 Pacific

Severity: Important

References: CVE-2021-45463

Issue Overview:

Due to the use of the system command in the Magick-Load op used by gegl an attacker is able to craft a command line path that is able to lead to the execution of arbitrary shell commands that impacts availability, confidentiality and integrity. (CVE-2021-45463)

Affected Packages:

gegl

Issue Correction:
Run yum update gegl to update your system.

New Packages:

aarch64:
    gegl-0.2.0-19.amzn2.1.aarch64
    gegl-devel-0.2.0-19.amzn2.1.aarch64
    gegl-debuginfo-0.2.0-19.amzn2.1.aarch64

i686:
    gegl-0.2.0-19.amzn2.1.i686
    gegl-devel-0.2.0-19.amzn2.1.i686
    gegl-debuginfo-0.2.0-19.amzn2.1.i686

src:
    gegl-0.2.0-19.amzn2.1.src

x86_64:
    gegl-0.2.0-19.amzn2.1.x86_64
    gegl-devel-0.2.0-19.amzn2.1.x86_64
    gegl-debuginfo-0.2.0-19.amzn2.1.x86_64

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

ALAS2-2022-1755

ALAS2-2022-1755

Vulmon Search

About

Products

Connect