{"id":"MGASA-2019-0187","summary":"Updated graphicsmagick packages fix security vulnerabilities","details":"Updated graphicsmagick packages fix security vulnerabilities\n\nIn GraphicsMagick 1.4 snapshot-20190322 Q8, there is a stack-based buffer\noverflow in the function SVGStartElement of coders/svg.c, which allows\nremote attackers to cause a denial of service (application crash) or\npossibly have unspecified other impact via a quoted font family value.\n(CVE-2019-11005)\n\nIn GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer\nover-read in the function ReadMIFFImage of coders/miff.c, which allows\nattackers to cause a denial of service or information disclosure via an\nRLE packet. (CVE-2019-11006)\n\nIn GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer\nover-read in the ReadMNGImage function of coders/png.c, which allows\nattackers to cause a denial of service or information disclosure via an\nimage colormap. (CVE-2019-11007)\n\nIn GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer\noverflow in the function WriteXWDImage of coders/xwd.c, which allows\nremote attackers to cause a denial of service (application crash) or\npossibly have unspecified other impact via a crafted image file.\n(CVE-2019-11008)\n\nIn GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer\nover-read in the function ReadXWDImage of coders/xwd.c, which allows\nattackers to cause a denial of service or information disclosure via a\ncrafted image file. (CVE-2019-11009)\n\nIn GraphicsMagick 1.4 snapshot-20190322 Q8, there is a memory leak in the\nfunction ReadMPCImage of coders/mpc.c, which allows attackers to cause a\ndenial of service via a crafted image file. (CVE-2019-11010)\n\ncoders/xwd.c in GraphicsMagick 1.3.31 allows attackers to cause a denial\nof service (out-of-bounds read and application crash) by crafting an XWD\nimage file, a different vulnerability than CVE-2019-11008 and\nCVE-2019-11009. (CVE-2019-11473)\n\ncoders/xwd.c in GraphicsMagick 1.3.31 allows attackers to cause a denial\nof service (floating-point exception and application crash) by crafting\nan XWD image file, a different vulnerability than CVE-2019-11008 and\nCVE-2019-11009. (CVE-2019-11474)\n\nIn GraphicsMagick from version 1.3.8 to 1.4 snapshot-20190403 Q8, there\nis a heap-based buffer overflow in the function WritePDBImage of\ncoders/pdb.c, which allows an attacker to cause a denial of service or\npossibly have unspecified other impact via a crafted image file. This is\nrelated to MagickBitStreamMSBWrite in magick/bit_stream.c.\n(CVE-2019-11505)\n\nIn GraphicsMagick from version 1.3.30 to 1.4 snapshot-20190403 Q8, there\nis a heap-based buffer overflow in the function WriteMATLABImage of\ncoders/mat.c, which allows an attacker to cause a denial of service or\npossibly have unspecified other impact via a crafted image file. This is\nrelated to ExportRedQuantumType in magick/export.c. (CVE-2019-11506)\n","modified":"2026-01-30T14:19:50.428912Z","published":"2019-06-10T19:17:03Z","related":["CVE-2019-11005","CVE-2019-11006","CVE-2019-11007","CVE-2019-11008","CVE-2019-11009","CVE-2019-11010","CVE-2019-11473","CVE-2019-11474","CVE-2019-11505","CVE-2019-11506"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2019-0187.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=24766"},{"type":"REPORT","url":"https://lists.opensuse.org/opensuse-updates/2019-04/msg00188.html"}],"affected":[{"package":{"name":"graphicsmagick","ecosystem":"Mageia:6","purl":"pkg:rpm/mageia/graphicsmagick?arch=source&distro=mageia-6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.3.31-1.5.mga6"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2019-0187.json"}}],"schema_version":"1.7.3","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}