[3.2] imagemagick: multiple issues (CVE-2016-7799, CVE-2016-7906)
CVE-2016-7799: Mogrify buffer over-read in profile.c
Reference:
https://github.com/ImageMagick/ImageMagick/issues/280
Patch:
https://github.com/ImageMagick/ImageMagick/commit/a7bb158b7bedd1449a34432feb3a67c8f1873bfa
CVE-2016-7906: Mogrify heap-use-after-free in attribute.c
Reference:
https://github.com/ImageMagick/ImageMagick/issues/281
Patch:
https://github.com/ImageMagick/ImageMagick/commit/d63a3c5729df59f183e9e110d5d8385d17caaad0
(from redmine: issue id 6327, created on 2016-10-11, closed on 2017-09-05)
- Relations:
- parent #6323 (closed)
- Changesets:
- Revision 17424a01 by Sergei Lukin on 2016-12-26T14:50:40Z:
main/imagemagick: security upgrade to 6.9.6.8 - fixes #5751, #6327, #6104
CVE-2016-5118
CVE-2016-7799, CVE-2016-7906
CVE-2016-4562, CVE-2016-4563, CVE-2016-4564, CVE-2016-5010, CVE-2016-5687,
CVE-2016-5688, CVE-2016-5689, CVE-2016-5690, CVE-2016-5691, CVE-2016-5841,
CVE-2016-5842, CVE-2016-6491