Anfälligkeitssuche        Suche in 211766 CVE Beschreibungen
und 97459 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.1.4.2021.0153.1
Kategorie:SuSE Local Security Checks
Titel:SUSE: Security Advisory (SUSE-SU-2021:0153-1)
Zusammenfassung:The remote host is missing an update for the 'ImageMagick' package(s) announced via the SUSE-SU-2021:0153-1 advisory.
Beschreibung:Summary:
The remote host is missing an update for the 'ImageMagick' package(s) announced via the SUSE-SU-2021:0153-1 advisory.

Vulnerability Insight:
This update for ImageMagick fixes the following issues:

CVE-2020-25664: Fixed a heap-based buffer overflow in PopShortPixel
(bsc#1179202).

CVE-2020-25665: Fixed a heap-based buffer overflow in WritePALMImage
(bsc#1179208).

CVE-2020-25666: Fixed an outside the range of representable values of
type 'int' and signed integer overflow (bsc#1179212).

CVE-2020-25674: Fixed a heap-based buffer overflow in WriteOnePNGImage
(bsc#1179223).

CVE-2020-25675: Fixed an outside the range of representable values of
type 'long' and integer overflow (bsc#1179240).

CVE-2020-25676: Fixed an outside the range of representable values of
type 'long' and integer overflow at MagickCore/pixel.c (bsc#1179244).

CVE-2020-27750: Fixed a division by zero in
MagickCore/colorspace-private.h (bsc#1179260).

CVE-2020-27751: Fixed an integer overflow in MagickCore/quantum-export.c
(bsc#1179269).

CVE-2020-27752: Fixed a heap-based buffer overflow in PopShortPixel in
MagickCore/quantum-private.h (bsc#1179346).

CVE-2020-27752: Fixed a heap-based buffer overflow in PopShortPixel in
MagickCore/quantum-private.h (bsc#1179346).

CVE-2020-27753: Fixed memory leaks in AcquireMagickMemory function
(bsc#1179397).

CVE-2020-27755: Fixed memory leaks in ResizeMagickMemory function in
ImageMagick/MagickCore/memory.c (bsc#1179345).

CVE-2020-27756: Fixed a division by zero at MagickCore/geometry.c
(bsc#1179221).

CVE-2020-27757: Fixed an outside the range of representable values of
type 'unsigned long long' at MagickCore/quantum-private.h (bsc#1179268).

CVE-2020-27758: Fixed an outside the range of representable values of
type 'unsigned long long' (bsc#1179276).

CVE-2020-27759: Fixed an outside the range of representable values of
type 'int' at MagickCore/quantize.c (bsc#1179313).

CVE-2020-27760: Fixed a division by zero at MagickCore/enhance.c
(bsc#1179281).

CVE-2020-27761: Fixed an outside the range of representable values of
type 'unsigned long' at coders/palm.c (bsc#1179315).

CVE-2020-27762: Fixed an outside the range of representable values of
type 'unsigned char' (bsc#1179278).

CVE-2020-27763: Fixed a division by zero at MagickCore/resize.c
(bsc#1179312).

CVE-2020-27764: Fixed an outside the range of representable values of
type 'unsigned long' at MagickCore/statistic.c (bsc#1179317).

CVE-2020-27765: Fixed a division by zero at MagickCore/segment.c
(bsc#1179311).

CVE-2020-27766: Fixed an outside the range of representable values of
type 'unsigned long' at MagickCore/statistic.c (bsc#1179361).

CVE-2020-27767: Fixed an outside the range of representable values of
type 'float' at MagickCore/quantum.h (bsc#1179322).

CVE-2020-27768: Fixed an outside the range of representable values of
type 'unsigned int' at MagickCore/quantum-private.h (bsc#1179339).

CVE-2020-27770: Fixed an unsigned offset overflowed at
MagickCore/string.c (bsc#1179343).

CVE-2020-27771: Fixed an outside the ... [Please see the references for more information on the vulnerabilities]

Affected Software/OS:
'ImageMagick' package(s) on SUSE Linux Enterprise Module for Development Tools 15-SP2, SUSE Linux Enterprise Module for Desktop Applications 15-SP2

Solution:
Please install the updated package(s).

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2020-25664
Common Vulnerability Exposure (CVE) ID: CVE-2020-25665
Common Vulnerability Exposure (CVE) ID: CVE-2020-25666
Common Vulnerability Exposure (CVE) ID: CVE-2020-25674
Common Vulnerability Exposure (CVE) ID: CVE-2020-25675
Common Vulnerability Exposure (CVE) ID: CVE-2020-25676
Common Vulnerability Exposure (CVE) ID: CVE-2020-27750
Common Vulnerability Exposure (CVE) ID: CVE-2020-27751
Common Vulnerability Exposure (CVE) ID: CVE-2020-27752
Common Vulnerability Exposure (CVE) ID: CVE-2020-27753
Common Vulnerability Exposure (CVE) ID: CVE-2020-27754
Common Vulnerability Exposure (CVE) ID: CVE-2020-27755
Common Vulnerability Exposure (CVE) ID: CVE-2020-27756
Common Vulnerability Exposure (CVE) ID: CVE-2020-27757
Common Vulnerability Exposure (CVE) ID: CVE-2020-27758
Common Vulnerability Exposure (CVE) ID: CVE-2020-27759
Common Vulnerability Exposure (CVE) ID: CVE-2020-27760
Common Vulnerability Exposure (CVE) ID: CVE-2020-27761
Common Vulnerability Exposure (CVE) ID: CVE-2020-27762
Common Vulnerability Exposure (CVE) ID: CVE-2020-27763
Common Vulnerability Exposure (CVE) ID: CVE-2020-27764
Common Vulnerability Exposure (CVE) ID: CVE-2020-27765
Common Vulnerability Exposure (CVE) ID: CVE-2020-27766
Common Vulnerability Exposure (CVE) ID: CVE-2020-27767
Common Vulnerability Exposure (CVE) ID: CVE-2020-27768
Common Vulnerability Exposure (CVE) ID: CVE-2020-27769
Common Vulnerability Exposure (CVE) ID: CVE-2020-27770
Common Vulnerability Exposure (CVE) ID: CVE-2020-27771
Common Vulnerability Exposure (CVE) ID: CVE-2020-27772
Common Vulnerability Exposure (CVE) ID: CVE-2020-27773
Common Vulnerability Exposure (CVE) ID: CVE-2020-27774
Common Vulnerability Exposure (CVE) ID: CVE-2020-27775
Common Vulnerability Exposure (CVE) ID: CVE-2020-27776
Common Vulnerability Exposure (CVE) ID: CVE-2020-29599
CopyrightCopyright (C) 2021 Greenbone Networks GmbH

Dies ist nur einer von 97459 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2021 E-Soft Inc. Alle Rechte vorbehalten.