1. Forum
  2. Fsxnet Message
  3. FSX BOT

  • ImageMagick vulnerabilities

    From bugz_ubuntu@21:4/110 to Ubuntu Users on Monday, September 28, 2020 16:10:02
    imagemagick vulnerabilities

    A security issue affects these releases of Ubuntu and its
    derivatives:

    * Ubuntu 20.04 LTS

    Summary

    ImageMagick could be made to crash if it opened a specially
    crafted file.

    Software Description

    * imagemagick - Image manipulation programs and library

    Details

    It was discovered that ImageMagick incorrectly handled certain
    specially crafted image files. If a user or automated system using
    ImageMagick were tricked into opening a specially crafted image,
    an attacker could exploit this to cause a denial of service or
    other unspecified impact. (CVE-2019-19948, CVE-2019-19949)

    Update instructions

    The problem can be corrected by updating your system to the
    following package versions:

    Ubuntu 20.04 LTS
    imagemagick - 8:6.9.10.23+dfsg-2.1ubuntu11.1
    imagemagick-6.q16 - 8:6.9.10.23+dfsg-2.1ubuntu11.1
    libmagick++-6.q16-8 - 8:6.9.10.23+dfsg-2.1ubuntu11.1
    libmagickcore-6.q16-6 - 8:6.9.10.23+dfsg-2.1ubuntu11.1

    To update your system, please follow these instructions:
    https://wiki.ubuntu.com/Security/Upgrades.

    In general, a standard system update will make all the necessary
    changes.

    References

    * CVE-2019-19948
    * CVE-2019-19949

    --- Mystic BBS v1.12 A46 (Linux/64)
    * Origin: BZ&BZ BBS (21:4/110)