This update fixes several vulnerabilities in imagemagick: Various memory handling problems and cases of missing or incomplete input sanitising may result in denial of service or the execution of arbitrary code if malformed TGA, Sun or PSD files are processed. This update also fixes visual artefacts when running -sharpen on CMYK images (no security impact, but piggybacked on top of the security update with approval of the Debian stable release managers since it's a regression in jessie compared to wheezy). For the stable distribution (jessie), these problems have been fixed in version 8:6.8.9.9-5+deb8u8. For the upcoming stable distribution (stretch), these problems have been fixed in version 8:6.9.7.4+dfsg-2. For the unstable distribution (sid), these problems have been fixed in version 8:6.9.7.4+dfsg-2. We recommend that you upgrade your imagemagick packages.
This update fixes several vulnerabilities in imagemagick: Various memory handling problems and cases of missing or incomplete input sanitising may result in denial of service or the execution of arbitrary code if malformed TGA, Sun or PSD files are processed.
This update also fixes visual artefacts when running -sharpen on CMYK images (no security impact, but piggybacked on top of the security update with approval of the Debian stable release managers since it's a regression in jessie compared to wheezy).
For the stable distribution (jessie), these problems have been fixed in version 8:6.8.9.9-5+deb8u8.
For the upcoming stable distribution (stretch), these problems have been fixed in version 8:6.9.7.4+dfsg-2.
For the unstable distribution (sid), these problems have been fixed in version 8:6.9.7.4+dfsg-2.
We recommend that you upgrade your imagemagick packages.
Vulmon