{"id":"MGASA-2021-0156","summary":"Updated imagemagick packages fix security vulnerabilities","details":"A flaw was found in ImageMagick in coders/jp2.c. An attacker who submits \na crafted file that is processed by ImageMagick could trigger undefined \nbehavior in the form of math division by zero. The highest threat from \nthis vulnerability is to system availability (CVE-2021-20241).\n\nA flaw was found in ImageMagick in MagickCore/resize.c. An attacker who submits\na crafted file that is processed by ImageMagick could trigger undefined\nbehavior in the form of math division by zero. The highest threat from\nthis vulnerability is to system availability (CVE-2021-20243).\n\nA flaw was found in ImageMagick in MagickCore/visual-effects.c. An attacker who\nsubmits a crafted file that is processed by ImageMagick could trigger undefined\nbehavior in the form of math division by zero. The highest threat from this\nvulnerability is to system availability (CVE-2021-20244).\n\nA flaw was found in ImageMagick in MagickCore/resample.c. An attacker who\nsubmits a crafted file that is processed by ImageMagick could trigger undefined\nbehavior in the form of math division by zero. The highest threat from this\nvulnerability is to system availability (CVe-2021-20246).\n\nNote that abydos, blender, converseen, cuneiform-linux, digikam, kxxstich,\nlibopenshot, pfstools, php-imagick, spectacle, synfig, xine-lib1.2, mgba,\nwindowmaker, zbar and transcode (and tainted conter-parts) have been rebuilt.\n","modified":"2026-01-31T15:59:29.404315Z","published":"2021-03-27T14:27:02Z","related":["CVE-2021-20241","CVE-2021-20243","CVE-2021-20244","CVE-2021-20246"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2021-0156.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=28462"},{"type":"REPORT","url":"https://lists.suse.com/pipermail/sle-security-updates/2021-February/008374.html"},{"type":"REPORT","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/6SG6MVYKVW7O5POXSG4CGOWDIOAZCWWT/"}],"affected":[{"package":{"name":"imagemagick","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/imagemagick?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"7.0.10.62-1.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"abydos","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/abydos?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.1.3-2.2.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"blender","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/blender?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.79b-14.git20190504.2.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"converseen","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/converseen?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.9.7.2-2.2.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"cuneiform-linux","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/cuneiform-linux?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.1.0-15.1.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"digikam","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/digikam?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"6.1.0-4.1.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"kxstitch","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/kxstitch?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.1.1-5.1.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"libopenshot","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/libopenshot?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.4.4-2.2.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"pfstools","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/pfstools?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.1.0-13.2.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"php-imagick","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/php-imagick?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.4.4-1.2.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"pythonmagick","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/pythonmagick?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.9.19-4.1.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"spectacle","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/spectacle?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"19.04.0-1.1.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"synfig","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/synfig?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.2.2-1.2.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"xine-lib1.2","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/xine-lib1.2?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.2.9-9.2.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"sk1","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/sk1?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.0-0.rc3.5.2.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"uniconvertor","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/uniconvertor?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.0-0.1.rc3_20171226.2.2.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"mgba","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/mgba?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.6.3-5.2.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"windowmaker","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/windowmaker?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.95.8-5.1.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"zbar","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/zbar?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.23-1.1.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"imagemagick","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/imagemagick?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"7.0.10.62-1.mga7.tainted"}]}],"ecosystem_specific":{"section":"tainted"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"abydos","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/abydos?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.1.3-2.2.mga7.tainted"}]}],"ecosystem_specific":{"section":"tainted"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"transcode","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/transcode?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.1.7-23.2.mga7.tainted"}]}],"ecosystem_specific":{"section":"tainted"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"xine-lib1.2","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/xine-lib1.2?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.2.9-9.2.mga7.tainted"}]}],"ecosystem_specific":{"section":"tainted"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"imagemagick","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/imagemagick?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"7.0.10.62-1.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"abydos","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/abydos?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.2.3-4.1.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"blender","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/blender?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.83.10-3.1.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"converseen","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/converseen?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.9.8.1-4.1.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"cuneiform-linux","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/cuneiform-linux?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.1.0-18.1.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"digikam","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/digikam?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"7.1.0-4.1.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"kxstitch","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/kxstitch?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.2.0-4.1.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"libopenshot","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/libopenshot?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.2.5-5.1.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"pfstools","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/pfstools?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.1.0-20.1.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"php-imagick","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/php-imagick?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.4.5-0.git20201230.2.1.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"pythonmagick","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/pythonmagick?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.9.19-10.1.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"spectacle","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/spectacle?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"20.12.0-2.1.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"synfig","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/synfig?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.2.2-11.1.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"xine-lib1.2","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/xine-lib1.2?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.2.11-1.1.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"mgba","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/mgba?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.8.4-1.1.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"windowmaker","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/windowmaker?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.95.9-3.1.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"zbar","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/zbar?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.23.1-5.1.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"imagemagick","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/imagemagick?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"7.0.10.62-1.mga8.tainted"}]}],"ecosystem_specific":{"section":"tainted"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"abydos","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/abydos?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.2.3-4.1.mga8.tainted"}]}],"ecosystem_specific":{"section":"tainted"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"transcode","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/transcode?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.1.7-29.1.mga8.tainted"}]}],"ecosystem_specific":{"section":"tainted"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}},{"package":{"name":"xine-lib1.2","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/xine-lib1.2?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.2.11-1.1.mga8.tainted"}]}],"ecosystem_specific":{"section":"tainted"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0156.json"}}],"schema_version":"1.7.3","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}