| Errata ID | 650 |
|---|---|
| Date | 2020-07-08 |
| Source package | imagemagick |
| Fixed in version | 8:6.9.7.4+dfsg-11+deb9u8 |
| Description | This update addresses the following issues: * heap-based buffer overflow at MagickCore/statistic.c in EvaluateImages because of mishandling columns (CVE-2019-13300) * stack-based buffer overflow at coders/pnm.c in WritePNMImage because of a misplaced assignment (CVE-2019-13304) * stack-based buffer overflow at coders/pnm.c in WritePNMImage because of off-by-one errors (CVE-2019-13306) * heap-based buffer overflow at MagickCore/statistic.c in EvaluateImages because of mishandling rows (CVE-2019-13307) * Use after free in ReadMATImage in coders/mat.c (CVE-2019-15140) * heap-based buffer overflow in WriteSGIImage in coders/sgi.c (CVE-2019-19948) |
| Additional notes | |
| CVE ID | CVE-2019-13300 CVE-2019-13304 CVE-2019-13306 CVE-2019-13307 CVE-2019-15140 CVE-2019-19948 |
| UCS Bug number | #51616 |
