--===============1505973215666763588== Content-Type: multipart/signed; micalg="pgp-sha512"; protocol="application/pgp-signature"; boundary="=-70xA7CRrMD6qfiOPluUk"
--=-70xA7CRrMD6qfiOPluUk Content-Type: text/plain; charset="UTF-8 Content-Transfer-Encoding: quoted-printable
========================================================================== Ubuntu Security Notice USN-4206-1 December 02, 2019
graphicsmagick vulnerabilities ==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 16.04 LTS
Summary:
Several security issues were fixed in GraphicsMagick.
Software Description: - graphicsmagick: collection of image processing tools
Details:
It was discovered that GraphicsMagick incorrectly handled certain image files. An attacker could possibly use this issue to cause a denial of service. (CVE-2017-10794, CVE-2017-10799, CVE-2017-11102, CVE-2017-11140, CVE-2017-11403, CVE-2017-11636, CVE-2017-11637, CVE-2017-13147, CVE-2017-14042, CVE-2017-6335)
Update instructions:
The problem can be corrected by updating your system to the following package versions:
Ubuntu 16.04 LTS: graphicsmagick 1.3.23-1ubuntu0.2 libgraphicsmagick++-q16-12 1.3.23-1ubuntu0.2 libgraphicsmagick-q16-3 1.3.23-1ubuntu0.2
In general, a standard system update will make all the necessary changes.
References: https://usn.ubuntu.com/4206-1 CVE-2017-10794, CVE-2017-10799, CVE-2017-11102, CVE-2017-11140, CVE-2017-11403, CVE-2017-11636, CVE-2017-11637, CVE-2017-13147, CVE-2017-14042, CVE-2017-6335
Package Information: https://launchpad.net/ubuntu/+source/graphicsmagick/1.3.23-1ubuntu0.2
--=-70xA7CRrMD6qfiOPluUk Content-Type: application/pgp-signature; name="signature.asc" Content-Description: This is a digitally signed message part Content-Transfer-Encoding: 7bit
-----BEGIN PGP SIGNATURE-----
iQIzBAABCgAdFiEECtyyz6azUy6AZBzSkGeI6zGnN/8FAl3mYQAACgkQkGeI6zGn N//pXRAAlQ/U9pOKJQlspcQDewfbvMRyhAHkcdVz4qvD6D/1BwOJqD4Vvd/A9OX9 Axm9ZdAJhMD8MzakK7b9CXLsPzbetP0aQFwqTzGvu1Mk+0KTYOBTj6vdpBPAnKXx tCjIld6Rh5pWpBCAhzEJw3hxl4Aa10FswDlGaTdH06xYZmXEOdZGf2nNO0tEYW+j SWdZqAtcg9FCv4IeH+SYT+btMfzN2lfiNvGuIGDvbeybhFBj7zsAzcWFnaNdIbj5 KIE4LrWtwPxcJxto7hHAbXXIPjhq9uWSI7FfWV8oLWslSZ/jMS1b1MrGva3szjL4 rVko4fUhA4RkIWaYsNsC+u9yR9gCDLNObga81m/6Swj/iSROgIqBgNKBaOn34q0h hEmQ/aaKtWCXWHw3kqlwdW+WaGGgcmtjXvtj2LmliPFguiYok5HVOZNxZ6kT4r16 PugphlWKbJz9Af/J7GG/9Ziiiq3Vn5xCYEyn8VwoKnArG3E4fDxWeRv3vVW0G13q aLKdZH5bQSFB4cN0GGZg4tFYVOV1H6O2NYUsEUr3k9zo41zUep5KP5f5y1DUQSHM adGlQh1bpeTTFEIYEPHFpNelAJmtT0fok7U8SL2VPDlbZzO+ZCGZkf1sdS95inZX 6YdmI/ECsXpf0k4+4eQemnVjqDzut3QgIhTOtMXG4coAeP46gTo= =GLbV -----END PGP SIGNATURE-----
--=-70xA7CRrMD6qfiOPluUk--
--===============1505973215666763588== Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: inline
LS0gCnVidW50dS1zZWN1cml0eS1hbm5vdW5jZSBtYWlsaW5nIGxpc3QKdWJ1bnR1LXNlY3VyaXR5 LWFubm91bmNlQGxpc3RzLnVidW50dS5jb20KTW9kaWZ5IHNldHRpbmdzIG9yIHVuc3Vic2NyaWJl IGF0OiBodHRwczovL2xpc3RzLnVidW50dS5jb20vbWFpbG1hbi9saXN0aW5mby91YnVudHUtc2Vj dXJpdHktYW5ub3VuY2UK
--===============1505973215666763588==--
|