[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 2902-1] graphicsmagick security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian LTS Advisory DLA-2902-1                debian-lts@lists.debian.org
https://www.debian.org/lts/security/                    Thorsten Alteholz
January 27, 2022                              https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package        : graphicsmagick
Version        : 1.3.30+hg15796-1~deb9u5
CVE ID         : CVE-2020-12672


An issue has been found in graphicsmagick, a collection of image processing tools, that results in a heap buffer overwrite when
magnifying MNG images.


For Debian 9 stretch, this problem has been fixed in version
1.3.30+hg15796-1~deb9u5.

We recommend that you upgrade your graphicsmagick packages.

For the detailed security status of graphicsmagick please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/graphicsmagick

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

-----BEGIN PGP SIGNATURE-----
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=edgi
-----END PGP SIGNATURE-----


Reply to: