[SECURITY] [DLA 353-1] imagemagick security update

To: debian-lts-announce@lists.debian.org
Subject: [SECURITY] [DLA 353-1] imagemagick security update
From: Raphael Hertzog <hertzog@debian.org>
Date: Fri, 27 Nov 2015 18:39:52 +0100
Message-id: <[🔎] 20151127173952.GA18912@home.ouaza.com>
Mail-followup-to: Raphael Hertzog <hertzog@debian.org>, debian-lts-announce@lists.debian.org
Reply-to: debian-lts@lists.debian.org

Package        : imagemagick
Version        : 8:6.6.0.4-3+squeeze7
Debian Bug     : 806441

Submitting specially crafted icons (.ico) or .pict images to ImageMagick
can trigger integer overflows that can lead to buffer overflows and
memory allocations issues. Depending on the case, this can lead to a
denial of service or possibly worse.

For Debian 6 Squeeze, those issues have been fixed in imagemagick
8:6.6.0.4-3+squeeze7. We recommend that you upgrade your packages.

-- 
Raphaël Hertzog ◈ Debian Developer

Support Debian LTS: http://www.freexian.com/services/debian-lts.html
Learn to master Debian: http://debian-handbook.info/get/

Attachment: signature.asc
Description: PGP signature

Reply to:

Prev by Date: [SECURITY] [DLA 348-1] smokeping security update
Next by Date: [SECURITY] [DLA 354-1] nss security update
Previous by thread: [SECURITY] [DLA 348-1] smokeping security update
Next by thread: [SECURITY] [DLA 354-1] nss security update
Index(es):
- Date
- Thread