[Bugs] [Bug 13243] imagemagick 7.1.0.30 CVEs found

bugzilla bugzilla на rosalinux.ru
Ср Май 3 10:12:34 MSK 2023 

https://bugzilla.rosalinux.ru/show_bug.cgi?id=13243

Svyatoslav Matveev <s.matveev на rosalinux.ru> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |s.matveev на rosalinux.ru

--- Comment #1 from Svyatoslav Matveev <s.matveev на rosalinux.ru> ---
(In reply to Yury from comment #0)
> Please patch CVEs for package imagemagick version 7.1.0.30  
> INFO (CVEs are): imagemagick 7.1.0.30 cves found
> CVE-2022-1114
> Desc: A heap-use-after-free flaw was found in ImageMagick's
> RelinquishDCMInfo() function of dcm.c file. This vulnerability is triggered
> when an attacker passes a specially crafted DICOM image file to ImageMagick
> for conversion, potentially leading to information disclosure and a denial
> of service.
> Link: https://nvd.nist.gov/vuln/detail/CVE-2022-1114
> Severity: HIGH
> CVE-2022-1115
> Desc: A heap-buffer-overflow flaw was found in ImageMagick’s
> PushShortPixel() function of quantum-private.h file. This vulnerability is
> triggered when an attacker passes a specially crafted TIFF image file to
> ImageMagick for conversion, potentially leading to a denial of service.
> Link: https://nvd.nist.gov/vuln/detail/CVE-2022-1115
> Severity: MEDIUM
> CVE-2022-32545
> Desc: A vulnerability was found in ImageMagick, causing an outside the range
> of representable values of type 'unsigned char' at coders/psd.c, when
> crafted or untrusted input is processed. This leads to a negative impact to
> application availability or other problems related to undefined behavior.
> Link: https://nvd.nist.gov/vuln/detail/CVE-2022-32545
> Severity: HIGH
> CVE-2022-32546
> Desc: A vulnerability was found in ImageMagick, causing an outside the range
> of representable values of type 'unsigned long' at coders/pcl.c, when
> crafted or untrusted input is processed. This leads to a negative impact to
> application availability or other problems related to undefined behavior.
> Link: https://nvd.nist.gov/vuln/detail/CVE-2022-32546
> Severity: HIGH
> CVE-2023-1289
> Desc: A vulnerability was discovered in ImageMagick where a specially
> created SVG file loads itself and causes a segmentation fault. This flaw
> allows a remote attacker to pass a specially crafted SVG file that leads to
> a segmentation fault, generating many trash files in "/tmp," resulting in a
> denial of service. When ImageMagick crashes, it generates a lot of trash
> files. These trash files can be large if the SVG file contains many render
> actions. In a denial of service attack, if a remote attacker uploads an SVG
> file of size t, ImageMagick generates files of size 103*t. If an attacker
> uploads a 100M SVG, the server will generate about 10G.
> Link: https://nvd.nist.gov/vuln/detail/CVE-2023-1289
> Severity: MEDIUM

исправлены в этой версии CVE-2022-1114, CVE-2022-1115, CVE-2022-32545,
CVE-2022-32546.

CVE-2023-1289 по коду не подходит (оставить,может появится для этой версии).

-- 
You are receiving this mail because:
You are the QA Contact for the bug.
You are the assignee for the bug.
----------- следущая часть -----------
Вложение в формате HTML было извлечено&hellip;
URL: <http://lists.rosalinux.ru/pipermail/bugs/attachments/20230503/5f7657e6/attachment-0001.html>

Подробная информация о списке рассылки Bugs