[CLSA-2024:1709839661] Fix CVE(s): CVE-2023-5341
Type:
security
Severity:
Moderate
Release date:
2024-03-07 19:27:43 UTC
Description:
* SECURITY UPDATE: Heap use-after-free flaw in coders/bmp.c in ImageMagick - debian/patches/CVE-2023-5341.patch: Check BMP file size to fix ImproperImageHeader caused by poc provided by Hardik Shah of Vehere (Dawn Treaders team) - CVE-2023-5341
Updated packages:
  • imagemagick_6.8.9.9-7ubuntu5.17+tuxcare.els10_amd64.deb
    sha:6df8d865f8d939fe093cdaa0a149f5b80ad30266
  • imagemagick-6.q16_6.8.9.9-7ubuntu5.17+tuxcare.els10_amd64.deb
    sha:5143e008f8fcc3e00890ac5b489b15c4a0a1b7cc
  • imagemagick-common_6.8.9.9-7ubuntu5.17+tuxcare.els10_all.deb
    sha:50bb306b7c39f7b9bc88066329efaf9c3233ecd9
  • imagemagick-doc_6.8.9.9-7ubuntu5.17+tuxcare.els10_all.deb
    sha:0ef42ca9f371a86ad7947d6541ea0babca6937d3
  • libimage-magick-perl_6.8.9.9-7ubuntu5.17+tuxcare.els10_all.deb
    sha:02df7c625d1ee847e1ae0921c253284b13b3dd2b
  • libimage-magick-q16-perl_6.8.9.9-7ubuntu5.17+tuxcare.els10_amd64.deb
    sha:bbff7476ec46b43678e1b2f3eb30012bc74720b9
  • libmagick++-6-headers_6.8.9.9-7ubuntu5.17+tuxcare.els10_all.deb
    sha:b2a82574d80a5488b1e8d6cedfe8d72f764a6f1a
  • libmagick++-6.q16-5v5_6.8.9.9-7ubuntu5.17+tuxcare.els10_amd64.deb
    sha:e97894c4dc0a592c6e3490adbfaa3415181a2aa7
  • libmagick++-6.q16-dev_6.8.9.9-7ubuntu5.17+tuxcare.els10_amd64.deb
    sha:d9dacd4e4fec0a380b0658905baec6547b696ea4
  • libmagick++-dev_6.8.9.9-7ubuntu5.17+tuxcare.els10_all.deb
    sha:be6005d9475e2d2c3b66cbd20cd1a86494df05df
  • libmagickcore-6-arch-config_6.8.9.9-7ubuntu5.17+tuxcare.els10_amd64.deb
    sha:e3e24f2b75ff639d65ecab7332f51214205dd144
  • libmagickcore-6-headers_6.8.9.9-7ubuntu5.17+tuxcare.els10_all.deb
    sha:463347c8c504bc4226e1256ef1527ba3eb43408b
  • libmagickcore-6.q16-2_6.8.9.9-7ubuntu5.17+tuxcare.els10_amd64.deb
    sha:327e1944916d9a65246a8835e266aac293df6fc3
  • libmagickcore-6.q16-2-extra_6.8.9.9-7ubuntu5.17+tuxcare.els10_amd64.deb
    sha:c3cf4ded0bf35c3413ee90a6639f60f03b9980f9
  • libmagickcore-6.q16-dev_6.8.9.9-7ubuntu5.17+tuxcare.els10_amd64.deb
    sha:52c5425add9c7700401702048aa2c9625eaf414a
  • libmagickcore-dev_6.8.9.9-7ubuntu5.17+tuxcare.els10_all.deb
    sha:4b05324e2003b516c60b9ed387b0d48f57ee5b4c
  • libmagickwand-6-headers_6.8.9.9-7ubuntu5.17+tuxcare.els10_all.deb
    sha:5d78713ce7b28e808d26337afad1738382a31a16
  • libmagickwand-6.q16-2_6.8.9.9-7ubuntu5.17+tuxcare.els10_amd64.deb
    sha:651fb0fdfe1ba59b1d8636dc081e5ae098563649
  • libmagickwand-6.q16-dev_6.8.9.9-7ubuntu5.17+tuxcare.els10_amd64.deb
    sha:261a219e53c4a4ff9732ab86cfb73a3b9dc8ce26
  • libmagickwand-dev_6.8.9.9-7ubuntu5.17+tuxcare.els10_all.deb
    sha:508ec76306b5917cf86e90b9b9e6f6aa4fded141
  • perlmagick_6.8.9.9-7ubuntu5.17+tuxcare.els10_all.deb
    sha:531af5a8a61e5a362db3121973284a8659a524f7
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.