Several security issues were fixed in ImageMagick ...
This update fixes several vulnerabilities in imagemagick: Various memory
handling problems and cases of missing or incomplete input sanitising
may result in denial of service, memory disclosure or the execution of
arbitrary code if malformed RLE, ART, JNG, DDS, BMP, ICO, EPT, SUN, MTV,
PICT, XWD, PCD, SFW, MAT, EXR, DCM, MNG, PCX or SVG files are p ...
In ImageMagick 705-5, a crafted RLE image can trigger a crash because of incorrect EOF handling in coders/rlec ...
Debian Bug report logs -
#862589
CVE-2017-8351
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Sun, 14 May 2017 21:00:11 UTC
Severity: important
Tags: security
Foun ...
Debian Bug report logs -
#863123
imagemagick: CVE-2017-9143: Specially crafted arts file could lead to memory leak
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Mon ...
Debian Bug report logs -
#867824
imagemagick: CVE-2017-11505: CPU exhaustion in ReadOneJNGImage
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Sun, 9 Jul 2017 18:39 ...
Debian Bug report logs -
#862967
imagemagick: CVE-2017-9098: use of uninitialized memory in RLE decoder
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Fri, 19 May 2017 12:1 ...
Debian Bug report logs -
#862653
CVE-2017-8765
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Mon, 15 May 2017 10:15:01 UTC
Severity: important
Tags: security
Foun ...
Debian Bug report logs -
#867810
imagemagick: CVE-2017-11525: memory exhaustion in ReadCINImage
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Sun, 9 Jul 2017 16:42 ...
Debian Bug report logs -
#867821
imagemagick: CVE-2017-11530: memory exhaustion in ReadEPTImage in eptc
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Sun, 9 Jul 2 ...
Debian Bug report logs -
#864273
imagemagick: CVE-2017-9440
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Tue, 6 Jun 2017 05:39:02 UTC
Severity: normal
Tags: fixed-upstr ...
Debian Bug report logs -
#860736
CVE-2017-7943 Memory leak in svg
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Wed, 19 Apr 2017 14:21:02 UTC
Severity: serious
Tag ...
Debian Bug report logs -
#867721
CVE-2017-9501
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Sat, 8 Jul 2017 21:57:02 UTC
Severity: important
Tags: fixed-upstream ...
Debian Bug report logs -
#862573
CVE-2017-8345
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Sun, 14 May 2017 19:51:08 UTC
Severity: important
Tags: security
Foun ...
Debian Bug report logs -
#860734
CVE-2017-7941 memory leak in sgi
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Wed, 19 Apr 2017 14:09:02 UTC
Severity: serious
Tag ...
Debian Bug report logs -
#868264
CVE-2017-11141 memory exhaustion in ReadMATImage
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Moritz Muehlenhoff <jmm@debianorg>
Date: Wed, 12 Jul 2017 21:57:02 UTC
Severity: importa ...
Debian Bug report logs -
#864274
imagemagick: CVE-2017-9439
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Tue, 6 Jun 2017 05:45:01 UTC
Severity: normal
Tags: fixed-upstr ...
Debian Bug report logs -
#862632
CVE-2017-8353
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Mon, 15 May 2017 08:33:01 UTC
Severity: important
Tags: security
Foun ...
Debian Bug report logs -
#862590
CVE-2017-8352
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Sun, 14 May 2017 21:03:01 UTC
Severity: important
Tags: security
Foun ...
Debian Bug report logs -
#862637
CVE-2017-8830
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Mon, 15 May 2017 08:39:02 UTC
Severity: important
Tags: security
Foun ...
Debian Bug report logs -
#867808
[imagemagick] CPU exhaustion in ReadRLEImage
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Sun, 9 Jul 2017 16:42:01 UTC
Severity: ...
Debian Bug report logs -
#867823
imagemagick: CVE-2017-11529: memory leak in ReadMATImage in matc
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Sun, 9 Jul 2017 18 ...
Debian Bug report logs -
#862633
CVE-2017-8354
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Mon, 15 May 2017 08:33:07 UTC
Severity: important
Tags: security
Foun ...
Debian Bug report logs -
#862577
CVE-2017-8347
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Sun, 14 May 2017 19:57:02 UTC
Severity: important
Tags: security
Foun ...
Debian Bug report logs -
#867798
imagemagick: CVE-2017-11524: assertion failed in WriteBlob
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Sun, 9 Jul 2017 15:15:01 ...
Debian Bug report logs -
#862572
CVE-2017-8343: he ReadAAIImage function in aaic allows attackers to cause a denial of service (memory leak) via a crafted file
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES ...
Debian Bug report logs -
#862636
CVE-2017-8357
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Mon, 15 May 2017 08:36:14 UTC
Severity: important
Tags: security
Foun ...
Debian Bug report logs -
#867825
imagemagick: CVE-2017-11526: CPU exhaustion in ReadOneMNGImage
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Sun, 9 Jul 2017 18:39 ...
Debian Bug report logs -
#863125
imagemagick: CVE-2017-9142: A crafted file revealed an assertion failure in blobc
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Mo ...
Debian Bug report logs -
#867894
imagemagick: CVE-2017-11450
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Mon, 10 Jul 2017 11:39:06 UTC
Severity: important
Tags: ...
Debian Bug report logs -
#862635
CVE-2017-8356
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Mon, 15 May 2017 08:36:08 UTC
Severity: important
Tags: security
Foun ...
Debian Bug report logs -
#863124
imagemagick: CVE-2017-9141: A crafted file revealed an assertion failure in profilec
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: ...
Debian Bug report logs -
#862579
CVE-2017-8349
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Sun, 14 May 2017 20:00:10 UTC
Severity: important
Tags: security
Foun ...
Debian Bug report logs -
#862575
CVE-2017-8346
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Sun, 14 May 2017 19:54:01 UTC
Severity: important
Tags: security
Foun ...
Debian Bug report logs -
#862574
CVE-2017-8344
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Sun, 14 May 2017 19:51:14 UTC
Severity: important
Tags: security
Foun ...
Debian Bug report logs -
#867826
imagemagick: CVE-2017-11478: CPU exhaustion in ReadOneDJVUImage
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Sun, 9 Jul 2017 18:4 ...
Debian Bug report logs -
#862578
CVE-2017-8348
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Sun, 14 May 2017 20:00:02 UTC
Severity: important
Tags: security
Foun ...
Debian Bug report logs -
#862634
CVE-2017-8355
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Mon, 15 May 2017 08:36:02 UTC
Severity: important
Tags: security
Foun ...
Debian Bug report logs -
#862587
CVE-2017-8350
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Sun, 14 May 2017 21:00:02 UTC
Severity: important
Tags: security
Foun ...
Debian Bug report logs -
#867806
imagemagick: CVE-2017-11188: CPU exhaustion in ReadDPXImage
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Sun, 9 Jul 2017 16:39:02 ...
Debian Bug report logs -
#867812
imagemagick: CVE-2017-11527: memory exhaustion in ReadDPXImage in dpxc
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Sun, 9 Jul 2 ...
Debian Bug report logs -
#859771
imagemagick: CVE-2017-7606: Undefined behavoir in rle
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Fri, 7 Apr 2017 10:21:01 UTC
...
Debian Bug report logs -
#868184
CVE-2017-11170 memory exhaustion in ReadTGAImage
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Moritz Muehlenhoff <jmm@debianorg>
Date: Wed, 12 Jul 2017 21:57:02 UTC
Severity: importa ...
Debian Bug report logs -
#867811
imagemagick: CVE-2017-11528: memory leak in ReadDIBImage in dibc
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Sun, 9 Jul 2017 16 ...
Debian Bug report logs -
#868469
imagemagick: CVE-2017-11352 (Incomplete fix for CVE-2017-9144)
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Sat, 15 Jul 2017 19:45:01 UTC ...
Debian Bug report logs -
#859769
imagemagick: CVE-2017-7619: Infinite loop due to rounding error
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Fri, 7 Apr 2017 10:0 ...
Debian Bug report logs -
#863126
imagemagick: CVE-2017-9144: Check for EOF conditions for RLE image format
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Mon, 22 May ...
Debian Bug report logs -
#867896
imagemagick: CVE-2017-11449
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Mon, 10 Jul 2017 11:39:15 UTC
Severity: serious
Tags: fi ...
Debian Bug report logs -
#867778
imagemagick: CVE-2017-9500: assertion failed in ResetImageProfileIterator
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Sun, 9 Jul 2017 1 ...
Debian Bug report logs -
#867893
imagemagick: CVE-2017-11448
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Mon, 10 Jul 2017 11:39:02 UTC
Severity: important
Tags: ...
Debian Bug report logs -
#867367
imagemagick: CVE-2017-10928
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Thu, 6 Jul 2017 03:15:01 UTC
Severity: important
Tags: fixed-u ...
Debian Bug report logs -
#867897
imagemagick: CVE-2017-11447
Package:
src:imagemagick;
Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>;
Reported by: Bastien ROUCARIES <roucariesbastien@gmailcom>
Date: Mon, 10 Jul 2017 11:42:01 UTC
Severity: important
Tags: ...