Security update for GraphicsMagick SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2019:1354-1 Final 1 1 2019-05-09T07:45:23Z current 2019-05-09T07:45:23Z 2019-05-09T07:45:23Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for GraphicsMagick This update for GraphicsMagick fixes the following issues: Security issues fixed: - CVE-2019-11506: Fixed a heap-based buffer overflow in the function WriteMATLABImage (boo#1133498). - CVE-2019-11505: Fixed a heap-based buffer overflow in the function WritePDBImage (boo#1133501). The following fixes where modified and refreshed: - CVE-2019-11008: Fixed a heap-based buffer overflow in the function WriteXWDImage (boo#1132054). - CVE-2019-11009: Fixed a heap-based buffer over-read in the function ReadXWDImage (boo#1132053). - CVE-2019-11473: Fixed an out-of-bounds read leading to a possible denial of service in coders/xwd.c (boo#1133203). - CVE-2019-11474: Fixed a floating-point exception leading to a possible denial of service in coders/xwd.c (boo#1133202). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-2019-1354 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/opensuse-security-announce/2019-05/msg00020.html E-Mail link for openSUSE-SU-2019:1354-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1132053 SUSE Bug 1132053 https://bugzilla.suse.com/1132054 SUSE Bug 1132054 https://bugzilla.suse.com/1133202 SUSE Bug 1133202 https://bugzilla.suse.com/1133203 SUSE Bug 1133203 https://bugzilla.suse.com/1133498 SUSE Bug 1133498 https://bugzilla.suse.com/1133501 SUSE Bug 1133501 https://www.suse.com/security/cve/CVE-2019-11008/ SUSE CVE CVE-2019-11008 page https://www.suse.com/security/cve/CVE-2019-11009/ SUSE CVE CVE-2019-11009 page https://www.suse.com/security/cve/CVE-2019-11473/ SUSE CVE CVE-2019-11473 page https://www.suse.com/security/cve/CVE-2019-11474/ SUSE CVE CVE-2019-11474 page https://www.suse.com/security/cve/CVE-2019-11505/ SUSE CVE CVE-2019-11505 page https://www.suse.com/security/cve/CVE-2019-11506/ SUSE CVE CVE-2019-11506 page openSUSE Leap 15.0 GraphicsMagick-1.3.29-lp150.3.28.1 GraphicsMagick-devel-1.3.29-lp150.3.28.1 libGraphicsMagick++-Q16-12-1.3.29-lp150.3.28.1 libGraphicsMagick++-devel-1.3.29-lp150.3.28.1 libGraphicsMagick-Q16-3-1.3.29-lp150.3.28.1 libGraphicsMagick3-config-1.3.29-lp150.3.28.1 libGraphicsMagickWand-Q16-2-1.3.29-lp150.3.28.1 perl-GraphicsMagick-1.3.29-lp150.3.28.1 GraphicsMagick-1.3.29-lp150.3.28.1 as a component of openSUSE Leap 15.0 GraphicsMagick-devel-1.3.29-lp150.3.28.1 as a component of openSUSE Leap 15.0 libGraphicsMagick++-Q16-12-1.3.29-lp150.3.28.1 as a component of openSUSE Leap 15.0 libGraphicsMagick++-devel-1.3.29-lp150.3.28.1 as a component of openSUSE Leap 15.0 libGraphicsMagick-Q16-3-1.3.29-lp150.3.28.1 as a component of openSUSE Leap 15.0 libGraphicsMagick3-config-1.3.29-lp150.3.28.1 as a component of openSUSE Leap 15.0 libGraphicsMagickWand-Q16-2-1.3.29-lp150.3.28.1 as a component of openSUSE Leap 15.0 perl-GraphicsMagick-1.3.29-lp150.3.28.1 as a component of openSUSE Leap 15.0 In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer overflow in the function WriteXWDImage of coders/xwd.c, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image file. CVE-2019-11008 openSUSE Leap 15.0:GraphicsMagick-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:GraphicsMagick-devel-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:libGraphicsMagick++-Q16-12-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:libGraphicsMagick++-devel-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:libGraphicsMagick-Q16-3-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:libGraphicsMagick3-config-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:libGraphicsMagickWand-Q16-2-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:perl-GraphicsMagick-1.3.29-lp150.3.28.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-05/msg00020.html https://www.suse.com/security/cve/CVE-2019-11008.html CVE-2019-11008 https://bugzilla.suse.com/1132054 SUSE Bug 1132054 https://bugzilla.suse.com/1133202 SUSE Bug 1133202 https://bugzilla.suse.com/1133203 SUSE Bug 1133203 In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer over-read in the function ReadXWDImage of coders/xwd.c, which allows attackers to cause a denial of service or information disclosure via a crafted image file. CVE-2019-11009 openSUSE Leap 15.0:GraphicsMagick-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:GraphicsMagick-devel-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:libGraphicsMagick++-Q16-12-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:libGraphicsMagick++-devel-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:libGraphicsMagick-Q16-3-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:libGraphicsMagick3-config-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:libGraphicsMagickWand-Q16-2-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:perl-GraphicsMagick-1.3.29-lp150.3.28.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-05/msg00020.html https://www.suse.com/security/cve/CVE-2019-11009.html CVE-2019-11009 https://bugzilla.suse.com/1132053 SUSE Bug 1132053 https://bugzilla.suse.com/1133202 SUSE Bug 1133202 https://bugzilla.suse.com/1133203 SUSE Bug 1133203 coders/xwd.c in GraphicsMagick 1.3.31 allows attackers to cause a denial of service (out-of-bounds read and application crash) by crafting an XWD image file, a different vulnerability than CVE-2019-11008 and CVE-2019-11009. CVE-2019-11473 openSUSE Leap 15.0:GraphicsMagick-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:GraphicsMagick-devel-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:libGraphicsMagick++-Q16-12-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:libGraphicsMagick++-devel-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:libGraphicsMagick-Q16-3-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:libGraphicsMagick3-config-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:libGraphicsMagickWand-Q16-2-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:perl-GraphicsMagick-1.3.29-lp150.3.28.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-05/msg00020.html https://www.suse.com/security/cve/CVE-2019-11473.html CVE-2019-11473 https://bugzilla.suse.com/1133203 SUSE Bug 1133203 https://bugzilla.suse.com/1133204 SUSE Bug 1133204 coders/xwd.c in GraphicsMagick 1.3.31 allows attackers to cause a denial of service (floating-point exception and application crash) by crafting an XWD image file, a different vulnerability than CVE-2019-11008 and CVE-2019-11009. CVE-2019-11474 openSUSE Leap 15.0:GraphicsMagick-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:GraphicsMagick-devel-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:libGraphicsMagick++-Q16-12-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:libGraphicsMagick++-devel-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:libGraphicsMagick-Q16-3-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:libGraphicsMagick3-config-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:libGraphicsMagickWand-Q16-2-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:perl-GraphicsMagick-1.3.29-lp150.3.28.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-05/msg00020.html https://www.suse.com/security/cve/CVE-2019-11474.html CVE-2019-11474 https://bugzilla.suse.com/1133202 SUSE Bug 1133202 https://bugzilla.suse.com/1133204 SUSE Bug 1133204 In GraphicsMagick from version 1.3.8 to 1.4 snapshot-20190403 Q8, there is a heap-based buffer overflow in the function WritePDBImage of coders/pdb.c, which allows an attacker to cause a denial of service or possibly have unspecified other impact via a crafted image file. This is related to MagickBitStreamMSBWrite in magick/bit_stream.c. CVE-2019-11505 openSUSE Leap 15.0:GraphicsMagick-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:GraphicsMagick-devel-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:libGraphicsMagick++-Q16-12-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:libGraphicsMagick++-devel-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:libGraphicsMagick-Q16-3-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:libGraphicsMagick3-config-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:libGraphicsMagickWand-Q16-2-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:perl-GraphicsMagick-1.3.29-lp150.3.28.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-05/msg00020.html https://www.suse.com/security/cve/CVE-2019-11505.html CVE-2019-11505 https://bugzilla.suse.com/1133501 SUSE Bug 1133501 In GraphicsMagick from version 1.3.30 to 1.4 snapshot-20190403 Q8, there is a heap-based buffer overflow in the function WriteMATLABImage of coders/mat.c, which allows an attacker to cause a denial of service or possibly have unspecified other impact via a crafted image file. This is related to ExportRedQuantumType in magick/export.c. CVE-2019-11506 openSUSE Leap 15.0:GraphicsMagick-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:GraphicsMagick-devel-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:libGraphicsMagick++-Q16-12-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:libGraphicsMagick++-devel-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:libGraphicsMagick-Q16-3-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:libGraphicsMagick3-config-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:libGraphicsMagickWand-Q16-2-1.3.29-lp150.3.28.1 openSUSE Leap 15.0:perl-GraphicsMagick-1.3.29-lp150.3.28.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-05/msg00020.html https://www.suse.com/security/cve/CVE-2019-11506.html CVE-2019-11506 https://bugzilla.suse.com/1133498 SUSE Bug 1133498