Test Kennung:	1.3.6.1.4.1.25623.1.0.703726
Kategorie:	Debian Local Security Checks
Titel:	Debian Security Advisory DSA 3726-1 (imagemagick - security update)
Zusammenfassung:	Several issues have been discovered;in ImageMagick, a popular set of programs and libraries for image manipulation.;These issues include several problems in memory handling that can result in a;denial of service attack or in execution of arbitrary code by an attacker with;control on the image input.
Beschreibung:	Summary: Several issues have been discovered in ImageMagick, a popular set of programs and libraries for image manipulation. These issues include several problems in memory handling that can result in a denial of service attack or in execution of arbitrary code by an attacker with control on the image input. Affected Software/OS: imagemagick on Debian Linux Solution: For the stable distribution (jessie), these problems have been fixed in version 8:6.8.9.9-5+deb8u6. For the unstable distribution (sid), these problems have been fixed in version 8:6.9.6.5+dfsg-1. We recommend that you upgrade your imagemagick packages. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2016-7799 BugTraq ID: 93264 http://www.securityfocus.com/bid/93264 Debian Security Information: DSA-3726 (Google Search) http://www.debian.org/security/2016/dsa-3726 https://security.gentoo.org/glsa/201611-21 http://www.openwall.com/lists/oss-security/2016/10/01/6 http://www.openwall.com/lists/oss-security/2016/10/01/4 Common Vulnerability Exposure (CVE) ID: CVE-2016-7906 BugTraq ID: 93271 http://www.securityfocus.com/bid/93271 http://www.openwall.com/lists/oss-security/2016/10/02/3 http://www.openwall.com/lists/oss-security/2016/10/02/1 Common Vulnerability Exposure (CVE) ID: CVE-2016-8677 BugTraq ID: 93598 http://www.securityfocus.com/bid/93598 https://blogs.gentoo.org/ago/2016/10/07/imagemagick-memory-allocate-failure-in-acquirequantumpixels-quantum-c/ http://www.openwall.com/lists/oss-security/2016/10/16/1 SuSE Security Announcement: openSUSE-SU-2016:2671 (Google Search) http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html Common Vulnerability Exposure (CVE) ID: CVE-2016-8862 BugTraq ID: 93794 http://www.securityfocus.com/bid/93794 https://blogs.gentoo.org/ago/2016/10/17/imagemagick-memory-allocation-failure-in-acquiremagickmemory-memory-c/ http://www.openwall.com/lists/oss-security/2016/10/20/2 http://www.openwall.com/lists/oss-security/2016/10/20/3 Common Vulnerability Exposure (CVE) ID: CVE-2016-9556 BugTraq ID: 94492 http://www.securityfocus.com/bid/94492 https://blogs.gentoo.org/ago/2016/11/19/imagemagick-heap-based-buffer-overflow-in-ispixelgray-pixel-accessor-h http://www.openwall.com/lists/oss-security/2016/11/23/1 http://www.openwall.com/lists/oss-security/2016/12/01/4 http://www.openwall.com/lists/oss-security/2016/12/02/12 SuSE Security Announcement: openSUSE-SU-2016:3024 (Google Search) http://lists.opensuse.org/opensuse-updates/2016-12/msg00040.html Common Vulnerability Exposure (CVE) ID: CVE-2016-9559 BugTraq ID: 94489 http://www.securityfocus.com/bid/94489 https://blogs.gentoo.org/ago/2016/11/19/imagemagick-null-pointer-must-never-be-null-tiff-c/ http://www.openwall.com/lists/oss-security/2016/11/19/7 http://www.openwall.com/lists/oss-security/2016/11/23/4
Copyright	Copyright (C) 2016 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.