Debian Local Security Checks : Debian LTS: Security Advisory for graphicsmagick (DLA-1282-1)

Anfälligkeitssuche		Suche in 219043 CVE Beschreibungen und 99761 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.891282

Kategorie: Debian Local Security Checks

Titel: Debian LTS: Security Advisory for graphicsmagick (DLA-1282-1)

Zusammenfassung: A denial of service vulnerability has been discovered in graphicsmagick,;a collection of image processing tools and associated libraries.;;A specially crafted file can be used to produce a denial of service;(heap overwrite) or possible other unspecified impact by exploiting a;defect related to unused pixel staging area in the AcquireCacheNexus;function in magick/pixel_cache.c.

Beschreibung: Summary:
A denial of service vulnerability has been discovered in graphicsmagick,
a collection of image processing tools and associated libraries.

A specially crafted file can be used to produce a denial of service
(heap overwrite) or possible other unspecified impact by exploiting a
defect related to unused pixel staging area in the AcquireCacheNexus
function in magick/pixel_cache.c.

Affected Software/OS:
graphicsmagick on Debian Linux

Solution:
For Debian 7 'Wheezy', these problems have been fixed in version
1.3.16-1.1+deb7u18.

We recommend that you upgrade your graphicsmagick packages.

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2018-6799
BugTraq ID: 102981
http://www.securityfocus.com/bid/102981
Debian Security Information: DSA-4321 (Google Search)
https://www.debian.org/security/2018/dsa-4321
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WHIKB4TP6KBJWT2UIPWL5MWMG5QXKGEJ/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PF62B5PJA2JDUOCKJGUQO3SPL74BEYSV/
https://lists.debian.org/debian-lts-announce/2018/02/msg00017.html
https://lists.debian.org/debian-lts-announce/2018/08/msg00002.html

Copyright Copyright (C) 2018 Greenbone Networks GmbH http://greenbone.net

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.891282
Kategorie:	Debian Local Security Checks
Titel:	Debian LTS: Security Advisory for graphicsmagick (DLA-1282-1)
Zusammenfassung:	A denial of service vulnerability has been discovered in graphicsmagick,;a collection of image processing tools and associated libraries.;;A specially crafted file can be used to produce a denial of service;(heap overwrite) or possible other unspecified impact by exploiting a;defect related to unused pixel staging area in the AcquireCacheNexus;function in magick/pixel_cache.c.
Beschreibung:	Summary: A denial of service vulnerability has been discovered in graphicsmagick, a collection of image processing tools and associated libraries. A specially crafted file can be used to produce a denial of service (heap overwrite) or possible other unspecified impact by exploiting a defect related to unused pixel staging area in the AcquireCacheNexus function in magick/pixel_cache.c. Affected Software/OS: graphicsmagick on Debian Linux Solution: For Debian 7 'Wheezy', these problems have been fixed in version 1.3.16-1.1+deb7u18. We recommend that you upgrade your graphicsmagick packages. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2018-6799 BugTraq ID: 102981 http://www.securityfocus.com/bid/102981 Debian Security Information: DSA-4321 (Google Search) https://www.debian.org/security/2018/dsa-4321 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WHIKB4TP6KBJWT2UIPWL5MWMG5QXKGEJ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PF62B5PJA2JDUOCKJGUQO3SPL74BEYSV/ https://lists.debian.org/debian-lts-announce/2018/02/msg00017.html https://lists.debian.org/debian-lts-announce/2018/08/msg00002.html
Copyright	Copyright (C) 2018 Greenbone Networks GmbH http://greenbone.net