UbuntuUpdates.org

Package "imagemagick"

Name: imagemagick

Description:

image manipulation programs -- binaries

Latest version: 8:6.9.10.23+dfsg-2.1ubuntu11.1
Release: focal (20.04)
Level: security
Repository: universe
Homepage: https://www.imagemagick.org/

Links


Download "imagemagick"


Other versions of "imagemagick" in Focal

Repository Area Version
base universe 8:6.9.10.23+dfsg-2.1ubuntu11
updates universe 8:6.9.10.23+dfsg-2.1ubuntu11.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 8:6.9.10.23+dfsg-2.1ubuntu11.1 2020-09-28 14:06:56 UTC

  imagemagick (8:6.9.10.23+dfsg-2.1ubuntu11.1) focal-security; urgency=medium

  * Merge Security patches from Debian.
  * SECURITY UPDATE: Heap-based buffer overflow.
    - debian/patches/CVE-2019-19948.patch: Fix heap-based buffer overflow
      in coders/sgi.c.
    - debian/patches/CVE-2019-19949.patch: Fix heap-based buffer overflow
      in coders/png.c.
    - CVE-2019-19948
    - CVE-2019-19949

 -- Eduardo Barretto <email address hidden> Wed, 23 Sep 2020 16:17:40 -0300

CVE-2019-19948 In ImageMagick 7.0.8-43 Q16, there is a heap-based buffer overflow in the function WriteSGIImage of coders/sgi.c.
CVE-2019-19949 In ImageMagick 7.0.8-43 Q16, there is a heap-based buffer over-read in the function WritePNGImage of coders/png.c, related to Magick_png_write_raw_pr



About   -   Send Feedback to @ubuntu_updates