drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Zwei Probleme in ImageMagick
Name: |
Zwei Probleme in ImageMagick |
|
ID: |
USN-4549-1 |
|
Distribution: |
Ubuntu |
|
Plattformen: |
Ubuntu 20.04 LTS |
|
Datum: |
Mo, 28. September 2020, 21:45 |
|
Referenzen: |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19949
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19948 |
|
Applikationen: |
ImageMagick |
|
Originalnachricht |
--===============5838657476556243464== Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="c674t3x3wo7sq2gn" Content-Disposition: inline
--c674t3x3wo7sq2gn Content-Type: text/plain; charset=us-ascii Content-Disposition: inline
========================================================================== Ubuntu Security Notice USN-4549-1 September 28, 2020
imagemagick vulnerabilities ==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 20.04 LTS
Summary:
ImageMagick could be made to crash if it opened a specially crafted file.
Software Description: - imagemagick: Image manipulation programs and library
Details:
It was discovered that ImageMagick incorrectly handled certain specially crafted image files. If a user or automated system using ImageMagick were tricked into opening a specially crafted image, an attacker could exploit this to cause a denial of service or other unspecified impact. (CVE-2019-19948, CVE-2019-19949)
Update instructions:
The problem can be corrected by updating your system to the following package versions:
Ubuntu 20.04 LTS: imagemagick 8:6.9.10.23+dfsg-2.1ubuntu11.1 imagemagick-6.q16 8:6.9.10.23+dfsg-2.1ubuntu11.1 libmagick++-6.q16-8 8:6.9.10.23+dfsg-2.1ubuntu11.1 libmagickcore-6.q16-6 8:6.9.10.23+dfsg-2.1ubuntu11.1
In general, a standard system update will make all the necessary changes.
References: https://usn.ubuntu.com/4549-1 CVE-2019-19948, CVE-2019-19949
Package Information: https://launchpad.net/ubuntu/+source/imagemagick/8:6.9.10.23+dfsg-2.1ubuntu11.1
--c674t3x3wo7sq2gn Content-Type: application/pgp-signature; name="signature.asc"
-----BEGIN PGP SIGNATURE-----
iQIzBAEBCgAdFiEECtyyz6azUy6AZBzSkGeI6zGnN/8FAl9yB8oACgkQkGeI6zGn N//k8BAAhATEBJuMSs4i7nharaGew0FUdsiEJvWbj0X89nN9CMqmEIT1ky0fCVjX iOfK2mme6zNyAA5CIwHuG21/gVFLmmhPDN3IgfIWtlN4JxzQRKQoZL3+JtotD1LN daJe7aFhga5Zja6nEBVcjIQKGFkpr2Koqz2FM+phXy8i9CMsIM7N88r1uI3nB73K lYUJoafhbx3xfnVlMRlWvexH4FnfK05QksuINi3g1x2n0vy/TMyI4QiTpoW5MigF 5RZVeSf6QWIEmakOH9F4LCHjwLIuKx8XFKnsIpoUlqGqmTtlJDKbvSO2U3/+MQVM mKfYZ9aDOl3YglmWvR6urNCaZXXxnU7MmO9H0UObO++x/ldN9RZWjvqhyBeePuMg zlNU98zcjJFo7D8Z0NdurEty1NtT6wOOl0KXllf1AV167k1F1Koz1jK5/nraSqns 03YPaEbIUIF10Y3tyPkPmTucsfsbLuXP0JQ1KaLs4rUG7u3Xoca07IDwtnSOiNTT cGbyjyccnQUU8ALSUhPhkCcVCo0ruTtaOTxfy7bxyjD2et8kznvX6zY7W91R+dOp 6EXiVt3HdYZMFo5iPxfEYT34gx+fUfY42UqujVrC5fFe6HyX24Lbicvzm/nTg6kJ NzRNixUQJ5ELUTgH9x1NgaDDHh4/O16dTLMKX8zhc7KtI1Elwjw= =oj6P -----END PGP SIGNATURE-----
--c674t3x3wo7sq2gn--
--===============5838657476556243464== Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: inline
-- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce
|
|
|
|