Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2017-13139 (GCVE-0-2017-13139)
Vulnerability from cvelistv5
Published
2017-08-23 06:00
Modified
2024-08-05 18:58
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
In ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1, the ReadOneMNGImage function in coders/png.c has an out-of-bounds read with the MNG CLIP chunk.
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T18:58:12.529Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "DSA-4040",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "https://www.debian.org/security/2017/dsa-4040"
},
{
"name": "USN-3681-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/3681-1/"
},
{
"name": "GLSA-201711-07",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/201711-07"
},
{
"name": "100494",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/100494"
},
{
"name": "DSA-4019",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "https://www.debian.org/security/2017/dsa-4019"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=870109"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://github.com/ImageMagick/ImageMagick/commit/d072ed6aff835c174e856ce3a428163c0da9e8f4"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2017-08-23T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "In ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1, the ReadOneMNGImage function in coders/png.c has an out-of-bounds read with the MNG CLIP chunk."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-10-07T20:59:31",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "DSA-4040",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "https://www.debian.org/security/2017/dsa-4040"
},
{
"name": "USN-3681-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/3681-1/"
},
{
"name": "GLSA-201711-07",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "https://security.gentoo.org/glsa/201711-07"
},
{
"name": "100494",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/100494"
},
{
"name": "DSA-4019",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "https://www.debian.org/security/2017/dsa-4019"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=870109"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/ImageMagick/ImageMagick/commit/d072ed6aff835c174e856ce3a428163c0da9e8f4"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2017-13139",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "In ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1, the ReadOneMNGImage function in coders/png.c has an out-of-bounds read with the MNG CLIP chunk."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "DSA-4040",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2017/dsa-4040"
},
{
"name": "USN-3681-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3681-1/"
},
{
"name": "GLSA-201711-07",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/201711-07"
},
{
"name": "100494",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/100494"
},
{
"name": "DSA-4019",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2017/dsa-4019"
},
{
"name": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=870109",
"refsource": "CONFIRM",
"url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=870109"
},
{
"name": "https://github.com/ImageMagick/ImageMagick/commit/d072ed6aff835c174e856ce3a428163c0da9e8f4",
"refsource": "CONFIRM",
"url": "https://github.com/ImageMagick/ImageMagick/commit/d072ed6aff835c174e856ce3a428163c0da9e8f4"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2017-13139",
"datePublished": "2017-08-23T06:00:00",
"dateReserved": "2017-08-23T00:00:00",
"dateUpdated": "2024-08-05T18:58:12.529Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2017-13139\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2017-08-23T06:29:00.183\",\"lastModified\":\"2025-04-20T01:37:25.860\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1, the ReadOneMNGImage function in coders/png.c has an out-of-bounds read with the MNG CLIP chunk.\"},{\"lang\":\"es\",\"value\":\"En ImageMagick en versiones anteriores a la 6.9.9-0 y 7.x en versiones anteriores a la 7.0.6-1, la funci\u00f3n ReadOneMNGImage en coders/png.c tiene una lectura fuera de l\u00edmites con el fragmento MNG CLIP.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:P/A:P\",\"baseScore\":7.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.4,\"acInsufInfo\":true,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-125\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"6.9.9-0\",\"matchCriteriaId\":\"FD50817F-6EB7-477D-B5D9-A7E1B10E5FF6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.0-0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3B7CCC6B-C66E-48E2-BA1E-CBF6421B4FEB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.1-0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"693C9F8F-A8C1-4D06-8F31-E085E16E701C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.1-1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6D3D3DFC-8459-41BA-BF3E-AE84E48FCEE7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.1-2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A3E12EB4-B8F6-43A3-847D-DBC96AE10905\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.1-3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"30539421-5872-4C2E-94AE-8A2B05C952C0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.1-4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1A5B7537-8563-409D-82DE-EB07107D3C04\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.1-5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FA648D3C-A464-4F54-8B5E-E8431531FBB5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.1-6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D6666BB0-B211-490F-884C-BE410CD19DAF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.1-7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5FF2582D-1513-448B-8B61-9C4844B08324\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.1-8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E57E6BA4-A727-4CF5-B15F-76632D02617A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.1-9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C721BC6F-61DD-4ED1-8024-2946C494AEC4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.1-10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CD319D32-FE7A-456D-AFEE-DC9F0D98652C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.2-0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"09CDF263-38F5-469F-984B-9D9A223159B3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.2-1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"243FF3C1-D676-4D5F-A90C-3017DCBBE73A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.2-2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1B8BDDE6-6B38-442B-83A4-FAADBAE1C792\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.2-3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4DCD89B9-6A69-41DE-BE38-5E9193828279\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.2-4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"139BC277-8E00-4700-8B47-6D3A3CB38B04\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.2-5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D0FA2E18-6F7B-49D6-B60C-38851398F9B7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.2-6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7B7F510A-A439-47A3-AF31-4BF7F74D58A5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.2-7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A91B94E3-33BB-46B6-A1AE-EAA9906605CF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.2-8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F5B3DE17-08A8-457D-9AEB-BD6E04376B34\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.2-9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"98AD438E-28B7-4491-B58F-55FDE7F67CFD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.2-10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7E033A09-4F2F-4957-A9A8-5C9E7D90A1CA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.3-0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BB9B68E7-0E40-437A-A71B-0C078FE76FD8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.3-1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"948D5778-AD2A-4293-AE39-A406D75F5678\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.3-2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D391DECE-2408-4A8F-ACE6-F18028C422A3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.3-3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CC773CB4-0E7B-4D73-AB9C-D7CC98C38BD7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.3-4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"24A0C584-9DA3-48B0-B152-67B9E0239876\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.3-5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E42943C5-CC66-4E88-9085-1BD39937C09B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.3-6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E396985D-BE6A-4F4C-B294-FE69724534EF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.3-7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D1D84944-322C-4B5D-9B1C-587301747A34\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.3-8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B48F5327-CA20-4756-A06F-B30B660E8DA7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.3-9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"84C11EC2-C798-4C3B-8E00-9C70C3499B33\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.3-10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D30A3BD6-5903-42D6-A1E3-C6D2FE468A1E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.4-0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"441F9FAE-11FA-4976-8BB3-4A3A79B57663\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.4-1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4389D4A-8AD4-421E-AD4D-6761F45B7F6B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.4-2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1620AF57-49AF-4487-80A1-07627F50F817\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.4-3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DF373D13-0AB1-4518-AFFE-D09A5F56E992\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.4-4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"86483865-BFC3-4845-80DE-A6AC632A92A2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.4-5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2A147E12-E5D4-400E-9432-BB5BCF2352CE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.4-6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B1F2BF9D-9821-424E-8F06-BFB637C103A7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.4-7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"26D7231D-442B-4E7C-BCB2-EE8D787FD46D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.4-8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"749B8733-47B0-4F63-874D-62DF323CD045\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.4-9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AD9D1C91-B67A-430B-AB24-DCC7DAF69D7C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.4-10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0C5BE761-44E8-4614-BBD4-3FA7148156B0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.5-0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"79AA4723-3637-4FA7-AE60-9CEE7C535A13\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.5-1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2D1F577A-316C-4ECE-91CB-4C15F12CC63B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.5-2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"800A90FA-0B60-4AB7-8061-C9365432C09B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.5-3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"77990FE0-5063-455A-BF06-2CD41393E0E2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.5-4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"68F19A0F-29E9-40A5-B6BB-23C20343CDBE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.5-5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"72A65A02-CD63-4DDD-AFCC-FE6988F85E13\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.5-6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"25690796-E494-4D28-BB4F-AAF40D596AC7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.5-7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A2C0242E-0292-4DF7-A3FC-BE96DA95E7D4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.5-8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9F853E8E-1ED2-4BDA-BE60-BBE1F658695B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.5-10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3D7D7BFB-7FE0-4477-AF72-E5BCE1A39FFC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:7.0.6-0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F56AEC8-473C-4898-A9A8-14E151F3A322\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEECE5FC-CACF-4496-A3E7-164736409252\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*\",\"matchCriteriaId\":\"7A5301BF-1402-4BE0-A0F8-69FBE79BC6D6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9070C9D8-A14A-467F-8253-33B966C16886\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D\"}]}]}],\"references\":[{\"url\":\"http://www.securityfocus.com/bid/100494\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=870109\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/ImageMagick/ImageMagick/commit/d072ed6aff835c174e856ce3a428163c0da9e8f4\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/201711-07\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3681-1/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2017/dsa-4019\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2017/dsa-4040\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/100494\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=870109\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/ImageMagick/ImageMagick/commit/d072ed6aff835c174e856ce3a428163c0da9e8f4\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/201711-07\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3681-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2017/dsa-4019\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2017/dsa-4040\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
}
}
WID-SEC-W-2024-0172
Vulnerability from csaf_certbund
Published
2017-08-06 22:00
Modified
2024-08-22 22:00
Summary
ImageMagick: Mehrere Schwachstellen ermöglichen Denial of Service
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
ImageMagick ist eine Sammlung von Programmbibliotheken und Werkzeugen, die Grafiken in zahlreichen Formaten verarbeiten kann.
Angriff
Ein entfernter, anonymer oder authentifizierter Angreifer kann mehrere Schwachstellen in ImageMagick ausnutzen, um einen Denial of Service Angriff durchzuführen.
Betroffene Betriebssysteme
- Linux
- UNIX
- Windows
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "ImageMagick ist eine Sammlung von Programmbibliotheken und Werkzeugen, die Grafiken in zahlreichen Formaten verarbeiten kann.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer oder authentifizierter Angreifer kann mehrere Schwachstellen in ImageMagick ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux\n- UNIX\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-0172 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2017/wid-sec-w-2024-0172.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-0172 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0172"
},
{
"category": "external",
"summary": "National Vulnerability Database #CVE-2017-12566 vom 2017-08-04",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12566"
},
{
"category": "external",
"summary": "National Vulnerability Database #CVE-2017-12565 vom 2017-08-04",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12565"
},
{
"category": "external",
"summary": "National Vulnerability Database #CVE-2017-12564 vom 2017-08-04",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12564"
},
{
"category": "external",
"summary": "National Vulnerability Database #CVE-2017-12563 vom 2017-08-04",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12563"
},
{
"category": "external",
"summary": "National Vulnerability Database #CVE-2017-12587 vom 2017-08-04",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12587"
},
{
"category": "external",
"summary": "National Vulnerability Database #CVE-2017-12435 vom 2017-08-04",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12435"
},
{
"category": "external",
"summary": "National Vulnerability Database #CVE-2017-12434 vom 2017-08-04",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12434"
},
{
"category": "external",
"summary": "National Vulnerability Database #CVE-2017-12433 vom 2017-08-04",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12433"
},
{
"category": "external",
"summary": "National Vulnerability Database #CVE-2017-12432 vom 2017-08-04",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12432"
},
{
"category": "external",
"summary": "National Vulnerability Database #CVE-2017-12431 vom 2017-08-04",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12431"
},
{
"category": "external",
"summary": "National Vulnerability Database #CVE-2017-12430 vom 2017-08-04",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12430"
},
{
"category": "external",
"summary": "National Vulnerability Database #CVE-2017-12429 vom 2017-08-04",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12429"
},
{
"category": "external",
"summary": "National Vulnerability Database #CVE-2017-12428 vom 2017-08-04",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12428"
},
{
"category": "external",
"summary": "National Vulnerability Database #CVE-2017-12418 vom 2017-08-04",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12418"
},
{
"category": "external",
"summary": "Debian Security Advisory DSA-4019 vom 2017-11-06",
"url": "https://www.debian.org/security/2017/dsa-4019"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2017:2949-1 vom 2017-11-08",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172949-1.html"
},
{
"category": "external",
"summary": "Debian Security Advisory DSA-4040 vom 2017-11-18",
"url": "https://www.debian.org/security/2017/dsa-4040"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2017:3056-1 vom 2017-11-24",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20173056-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2017:3168-1 vom 2017-12-01",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20173168-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2017:3388-1 vom 2017-12-21",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20173388-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2017:3378-1 vom 2017-12-21",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20173378-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2017:3435-1 vom 2017-12-28",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20173435-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0043-1 vom 2018-01-09",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180043-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0017-1 vom 2018-01-05",
"url": "https://www.suse.com/de-de/support/update/announcement/2018/suse-su-20180017-1/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0130-1 vom 2018-01-18",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180130-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0132-1 vom 2018-01-18",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180132-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0197-1 vom 2018-01-25",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180197-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0350-1 vom 2018-02-02",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180350-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0349-1 vom 2018-02-02",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0413-1 vom 2018-02-10",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180413-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0486-1 vom 2018-02-20",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180486-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0524-1 vom 2018-02-22",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180524-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0581-1 vom 2018-03-02",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180581-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0672-1 vom 2018-03-15",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180672-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0770-1 vom 2018-03-22",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180770-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0857-1 vom 2018-04-03",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180857-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0864-1 vom 2018-04-04",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180864-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0880-1 vom 2018-04-06",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180880-1.html"
},
{
"category": "external",
"summary": "Debian Security Advisory DSA-4204 vom 2018-05-20",
"url": "https://www.debian.org/security/2018/dsa-4204"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:3808-1 vom 2018-11-19",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20183808-1.html"
},
{
"category": "external",
"summary": "Debian Security Advisory DLA-2366 vom 2020-09-08",
"url": "https://lists.debian.org/debian-lts-announce/2020/debian-lts-announce-202009/msg00007.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-5335-1 vom 2022-03-21",
"url": "https://ubuntu.com/security/notices/USN-5335-1"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2024-2432 vom 2024-01-23",
"url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2432.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2024-1926 vom 2024-03-19",
"url": "https://alas.aws.amazon.com/ALAS-2024-1926.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-6980-1 vom 2024-08-22",
"url": "https://ubuntu.com/security/notices/USN-6980-1"
}
],
"source_lang": "en-US",
"title": "ImageMagick: Mehrere Schwachstellen erm\u00f6glichen Denial of Service",
"tracking": {
"current_release_date": "2024-08-22T22:00:00.000+00:00",
"generator": {
"date": "2024-08-23T08:12:55.843+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.6"
}
},
"id": "WID-SEC-W-2024-0172",
"initial_release_date": "2017-08-06T22:00:00.000+00:00",
"revision_history": [
{
"date": "2017-08-06T22:00:00.000+00:00",
"number": "1",
"summary": "Initial Release"
},
{
"date": "2017-11-05T23:00:00.000+00:00",
"number": "2",
"summary": "cves"
},
{
"date": "2017-11-05T23:00:00.000+00:00",
"number": "3",
"summary": "Added references"
},
{
"date": "2017-11-05T23:00:00.000+00:00",
"number": "4",
"summary": "New remediations available"
},
{
"date": "2017-11-08T23:00:00.000+00:00",
"number": "5",
"summary": "New remediations available"
},
{
"date": "2017-11-19T23:00:00.000+00:00",
"number": "6",
"summary": "New remediations available"
},
{
"date": "2017-11-23T23:00:00.000+00:00",
"number": "7",
"summary": "New remediations available"
},
{
"date": "2017-11-30T23:00:00.000+00:00",
"number": "8",
"summary": "New remediations available"
},
{
"date": "2017-12-20T23:00:00.000+00:00",
"number": "9",
"summary": "New remediations available"
},
{
"date": "2017-12-27T23:00:00.000+00:00",
"number": "10",
"summary": "New remediations available"
},
{
"date": "2017-12-27T23:00:00.000+00:00",
"number": "11",
"summary": "Version nicht vorhanden"
},
{
"date": "2018-01-04T23:00:00.000+00:00",
"number": "12",
"summary": "SUSE:SUSE-SU-2018:0017-1"
},
{
"date": "2018-01-04T23:00:00.000+00:00",
"number": "13",
"summary": "Version nicht vorhanden"
},
{
"date": "2018-01-09T23:00:00.000+00:00",
"number": "14",
"summary": "New remediations available"
},
{
"date": "2018-01-09T23:00:00.000+00:00",
"number": "15",
"summary": "Version nicht vorhanden"
},
{
"date": "2018-01-09T23:00:00.000+00:00",
"number": "16",
"summary": "Version nicht vorhanden"
},
{
"date": "2018-01-18T23:00:00.000+00:00",
"number": "17",
"summary": "New remediations available"
},
{
"date": "2018-01-24T23:00:00.000+00:00",
"number": "18",
"summary": "New remediations available"
},
{
"date": "2018-02-04T23:00:00.000+00:00",
"number": "19",
"summary": "New remediations available"
},
{
"date": "2018-02-11T23:00:00.000+00:00",
"number": "20",
"summary": "New remediations available"
},
{
"date": "2018-02-20T23:00:00.000+00:00",
"number": "21",
"summary": "New remediations available"
},
{
"date": "2018-02-22T23:00:00.000+00:00",
"number": "22",
"summary": "New remediations available"
},
{
"date": "2018-03-04T23:00:00.000+00:00",
"number": "23",
"summary": "New remediations available"
},
{
"date": "2018-03-14T23:00:00.000+00:00",
"number": "24",
"summary": "New remediations available"
},
{
"date": "2018-03-22T23:00:00.000+00:00",
"number": "25",
"summary": "New remediations available"
},
{
"date": "2018-04-03T22:00:00.000+00:00",
"number": "26",
"summary": "New remediations available"
},
{
"date": "2018-04-05T22:00:00.000+00:00",
"number": "27",
"summary": "New remediations available"
},
{
"date": "2018-05-21T22:00:00.000+00:00",
"number": "28",
"summary": "New remediations available"
},
{
"date": "2018-11-19T23:00:00.000+00:00",
"number": "29",
"summary": "New remediations available"
},
{
"date": "2020-09-07T22:00:00.000+00:00",
"number": "30",
"summary": "Neue Updates von Debian aufgenommen"
},
{
"date": "2022-03-21T23:00:00.000+00:00",
"number": "31",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2024-01-22T23:00:00.000+00:00",
"number": "32",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2024-01-29T23:00:00.000+00:00",
"number": "33",
"summary": "Schreibfehler korrigiert"
},
{
"date": "2024-03-19T23:00:00.000+00:00",
"number": "34",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2024-08-22T22:00:00.000+00:00",
"number": "35",
"summary": "Neue Updates von Ubuntu aufgenommen"
}
],
"status": "final",
"version": "35"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Amazon Linux 2",
"product": {
"name": "Amazon Linux 2",
"product_id": "398363",
"product_identification_helper": {
"cpe": "cpe:/o:amazon:linux_2:-"
}
}
}
],
"category": "vendor",
"name": "Amazon"
},
{
"branches": [
{
"category": "product_name",
"name": "Debian Linux",
"product": {
"name": "Debian Linux",
"product_id": "2951",
"product_identification_helper": {
"cpe": "cpe:/o:debian:debian_linux:-"
}
}
}
],
"category": "vendor",
"name": "Debian"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=7.0.6-5",
"product": {
"name": "Open Source ImageMagick \u003c=7.0.6-5",
"product_id": "T010510"
}
},
{
"category": "product_version_range",
"name": "\u003c=7.0.6-5",
"product": {
"name": "Open Source ImageMagick \u003c=7.0.6-5",
"product_id": "T010510-fixed"
}
}
],
"category": "product_name",
"name": "ImageMagick"
}
],
"category": "vendor",
"name": "Open Source"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
},
{
"branches": [
{
"category": "product_name",
"name": "Ubuntu Linux",
"product": {
"name": "Ubuntu Linux",
"product_id": "T000126",
"product_identification_helper": {
"cpe": "cpe:/o:canonical:ubuntu_linux:-"
}
}
}
],
"category": "vendor",
"name": "Ubuntu"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-11446",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-11446"
},
{
"cve": "CVE-2017-11523",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-11523"
},
{
"cve": "CVE-2017-11533",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-11533"
},
{
"cve": "CVE-2017-11535",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-11535"
},
{
"cve": "CVE-2017-11537",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-11537"
},
{
"cve": "CVE-2017-11639",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-11639"
},
{
"cve": "CVE-2017-11640",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-11640"
},
{
"cve": "CVE-2017-12428",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-12428"
},
{
"cve": "CVE-2017-12431",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-12431"
},
{
"cve": "CVE-2017-12432",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-12432"
},
{
"cve": "CVE-2017-12434",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-12434"
},
{
"cve": "CVE-2017-12563",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-12563"
},
{
"cve": "CVE-2017-12587",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-12587"
},
{
"cve": "CVE-2017-12640",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-12640"
},
{
"cve": "CVE-2017-12671",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-12671"
},
{
"cve": "CVE-2017-12691",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-12691"
},
{
"cve": "CVE-2017-13139",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-13139"
},
{
"cve": "CVE-2017-13140",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-13140"
},
{
"cve": "CVE-2017-13141",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-13141"
},
{
"cve": "CVE-2017-13142",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-13142"
},
{
"cve": "CVE-2017-13143",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-13143"
},
{
"cve": "CVE-2017-13144",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-13144"
},
{
"cve": "CVE-2017-13145",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-13145"
},
{
"cve": "CVE-2017-9500",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-9500"
}
]
}
wid-sec-w-2024-0171
Vulnerability from csaf_certbund
Published
2017-08-22 22:00
Modified
2024-03-19 23:00
Summary
ImageMagick: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
ImageMagick ist eine Sammlung von Programmbibliotheken und Werkzeugen, die Grafiken in zahlreichen Formaten verarbeiten kann.
Angriff
Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in ImageMagick ausnutzen, um einen Denial of Service Angriff durchzuführen und Zugriff auf eventuell sensitive Informationen zu erlangen.
Betroffene Betriebssysteme
- UNIX
- Linux
- Windows
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "ImageMagick ist eine Sammlung von Programmbibliotheken und Werkzeugen, die Grafiken in zahlreichen Formaten verarbeiten kann.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in ImageMagick ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren und Zugriff auf eventuell sensitive Informationen zu erlangen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- UNIX\n- Linux\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-0171 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2017/wid-sec-w-2024-0171.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-0171 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0171"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2017-13141 vom 2017-08-22",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13141"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2017-13142 vom 2017-08-22",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13142"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2017-13143 vom 2017-08-22",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13143"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2017-13144 vom 2017-08-22",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13144"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2017-13145 vom 2017-08-22",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13145"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2017-13146 vom 2017-08-22",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13146"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2017-13131 vom 2017-08-22",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13131"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2017-13132 vom 2017-08-22",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13132"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2017-13133 vom 2017-08-22",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13133"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2017-13134 vom 2017-08-22",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13134"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2017-13139 vom 2017-08-22",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13139"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2017-13140 vom 2017-08-22",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13140"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2017-13062 vom 2017-08-22",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13062"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2017-13061 vom 2017-08-22",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13061"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2017-13060 vom 2017-08-22",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13060"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2017-13059 vom 2017-08-22",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13059"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2017-13058 vom 2017-08-22",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13058"
},
{
"category": "external",
"summary": "Debian Security Advisory DSA-4019 vom 2017-11-06",
"url": "https://www.debian.org/security/2017/dsa-4019"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2017:2949-1 vom 2017-11-08",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172949-1.html"
},
{
"category": "external",
"summary": "Debian Security Advisory DSA-4032 vom 2017-11-12",
"url": "https://www.debian.org/security/2017/dsa-4032"
},
{
"category": "external",
"summary": "Debian Security Advisory DSA-4040 vom 2017-11-18",
"url": "https://www.debian.org/security/2017/dsa-4040"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2017:3056-1 vom 2017-11-24",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20173056-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2017:3168-1 vom 2017-12-01",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20173168-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2017:3388-1 vom 2017-12-21",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20173388-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2017:3378-1 vom 2017-12-21",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20173378-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2017:3435-1 vom 2017-12-28",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20173435-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0017-1 vom 2018-01-04",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180017-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0043-1 vom 2018-01-09",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180043-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0130-1 vom 2018-01-18",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180130-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0132-1 vom 2018-01-18",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180132-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0197-1 vom 2018-01-25",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180197-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0350-1 vom 2018-02-02",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180350-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0349-1 vom 2018-02-02",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0413-1 vom 2018-02-10",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180413-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0486-1 vom 2018-02-20",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180486-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0524-1 vom 2018-02-22",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180524-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0581-1 vom 2018-03-02",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180581-1.html"
},
{
"category": "external",
"summary": "Debian Security Advisory DSA-4204 vom 2018-05-20",
"url": "https://www.debian.org/security/2018/dsa-4204"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:3191-1 vom 2018-10-18",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20183191-1.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-4222-1 vom 2019-12-16",
"url": "https://usn.ubuntu.com/4222-1/"
},
{
"category": "external",
"summary": "Debian Security Advisory DLA-2366 vom 2020-09-08",
"url": "https://lists.debian.org/debian-lts-announce/2020/debian-lts-announce-202009/msg00007.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2024-2432 vom 2024-01-23",
"url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2432.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2024-1926 vom 2024-03-19",
"url": "https://alas.aws.amazon.com/ALAS-2024-1926.html"
}
],
"source_lang": "en-US",
"title": "ImageMagick: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2024-03-19T23:00:00.000+00:00",
"generator": {
"date": "2024-08-15T18:04:07.558+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.5"
}
},
"id": "WID-SEC-W-2024-0171",
"initial_release_date": "2017-08-22T22:00:00.000+00:00",
"revision_history": [
{
"date": "2017-08-22T22:00:00.000+00:00",
"number": "1",
"summary": "Initial Release"
},
{
"date": "2017-08-22T22:00:00.000+00:00",
"number": "2",
"summary": "Version nicht vorhanden"
},
{
"date": "2017-11-05T23:00:00.000+00:00",
"number": "3",
"summary": "New remediations available"
},
{
"date": "2017-11-08T23:00:00.000+00:00",
"number": "4",
"summary": "New remediations available"
},
{
"date": "2017-11-12T23:00:00.000+00:00",
"number": "5",
"summary": "New remediations available"
},
{
"date": "2017-11-19T23:00:00.000+00:00",
"number": "6",
"summary": "New remediations available"
},
{
"date": "2017-11-23T23:00:00.000+00:00",
"number": "7",
"summary": "New remediations available"
},
{
"date": "2017-11-30T23:00:00.000+00:00",
"number": "8",
"summary": "New remediations available"
},
{
"date": "2017-12-20T23:00:00.000+00:00",
"number": "9",
"summary": "New remediations available"
},
{
"date": "2017-12-27T23:00:00.000+00:00",
"number": "10",
"summary": "New remediations available"
},
{
"date": "2018-01-04T23:00:00.000+00:00",
"number": "11",
"summary": "New remediations available"
},
{
"date": "2018-01-09T23:00:00.000+00:00",
"number": "12",
"summary": "New remediations available"
},
{
"date": "2018-01-18T23:00:00.000+00:00",
"number": "13",
"summary": "New remediations available"
},
{
"date": "2018-01-24T23:00:00.000+00:00",
"number": "14",
"summary": "New remediations available"
},
{
"date": "2018-02-04T23:00:00.000+00:00",
"number": "15",
"summary": "New remediations available"
},
{
"date": "2018-02-11T23:00:00.000+00:00",
"number": "16",
"summary": "New remediations available"
},
{
"date": "2018-02-20T23:00:00.000+00:00",
"number": "17",
"summary": "New remediations available"
},
{
"date": "2018-02-22T23:00:00.000+00:00",
"number": "18",
"summary": "New remediations available"
},
{
"date": "2018-03-04T23:00:00.000+00:00",
"number": "19",
"summary": "New remediations available"
},
{
"date": "2018-05-21T22:00:00.000+00:00",
"number": "20",
"summary": "New remediations available"
},
{
"date": "2018-10-17T22:00:00.000+00:00",
"number": "21",
"summary": "New remediations available"
},
{
"date": "2019-12-16T23:00:00.000+00:00",
"number": "22",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2020-09-07T22:00:00.000+00:00",
"number": "23",
"summary": "Neue Updates von Debian aufgenommen"
},
{
"date": "2024-01-22T23:00:00.000+00:00",
"number": "24",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2024-03-19T23:00:00.000+00:00",
"number": "25",
"summary": "Neue Updates von Amazon aufgenommen"
}
],
"status": "final",
"version": "25"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Amazon Linux 2",
"product": {
"name": "Amazon Linux 2",
"product_id": "398363",
"product_identification_helper": {
"cpe": "cpe:/o:amazon:linux_2:-"
}
}
}
],
"category": "vendor",
"name": "Amazon"
},
{
"branches": [
{
"category": "product_name",
"name": "Debian Linux",
"product": {
"name": "Debian Linux",
"product_id": "2951",
"product_identification_helper": {
"cpe": "cpe:/o:debian:debian_linux:-"
}
}
}
],
"category": "vendor",
"name": "Debian"
},
{
"branches": [
{
"category": "product_name",
"name": "Open Source ImageMagick",
"product": {
"name": "Open Source ImageMagick",
"product_id": "T010617",
"product_identification_helper": {
"cpe": "cpe:/a:imagemagick:imagemagick:-"
}
}
}
],
"category": "vendor",
"name": "Open Source"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
},
{
"branches": [
{
"category": "product_name",
"name": "Ubuntu Linux",
"product": {
"name": "Ubuntu Linux",
"product_id": "T000126",
"product_identification_helper": {
"cpe": "cpe:/o:canonical:ubuntu_linux:-"
}
}
}
],
"category": "vendor",
"name": "Ubuntu"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-13058",
"notes": [
{
"category": "description",
"text": "In ImageMagick existieren mehrere Schwachstellen. Die Schwachstellen existieren in den Funktionen \"WritePCXImage\", \"WriteOneJNGImage\", \"WritePDFImage\", \"ReadPSDLayersInternal\", \"ReadOnePNGImage\", \"ReadMIFFImage\", \"ReadMATImage\", \"ReadJP2Image\", \"ReadOneMNGImage\", \"SFWScan\", \"formatIPTC\" und \"load_level\". Durch fehlende Speicherinitialisierungen und Validierungen k\u00f6nnen durch pr\u00e4parierte Bilddateien diverse Speicherlecks ausgenutzt werden. Ein entfernter, anonymer Angreifer kann so Zugriff auf eventuell sensitive Informationen erlangen und einen Denial of Service Zustand herbeif\u00fchren. Zur erfolgreichen Ausnutzung dieser Schwachstelle muss der Angreifer den Benutzer dazu bringen, eine modifizierte Bilddatei hochzuladen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363",
"T010617"
]
},
"release_date": "2017-08-22T22:00:00.000+00:00",
"title": "CVE-2017-13058"
},
{
"cve": "CVE-2017-13059",
"notes": [
{
"category": "description",
"text": "In ImageMagick existieren mehrere Schwachstellen. Die Schwachstellen existieren in den Funktionen \"WritePCXImage\", \"WriteOneJNGImage\", \"WritePDFImage\", \"ReadPSDLayersInternal\", \"ReadOnePNGImage\", \"ReadMIFFImage\", \"ReadMATImage\", \"ReadJP2Image\", \"ReadOneMNGImage\", \"SFWScan\", \"formatIPTC\" und \"load_level\". Durch fehlende Speicherinitialisierungen und Validierungen k\u00f6nnen durch pr\u00e4parierte Bilddateien diverse Speicherlecks ausgenutzt werden. Ein entfernter, anonymer Angreifer kann so Zugriff auf eventuell sensitive Informationen erlangen und einen Denial of Service Zustand herbeif\u00fchren. Zur erfolgreichen Ausnutzung dieser Schwachstelle muss der Angreifer den Benutzer dazu bringen, eine modifizierte Bilddatei hochzuladen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363",
"T010617"
]
},
"release_date": "2017-08-22T22:00:00.000+00:00",
"title": "CVE-2017-13059"
},
{
"cve": "CVE-2017-13060",
"notes": [
{
"category": "description",
"text": "In ImageMagick existieren mehrere Schwachstellen. Die Schwachstellen existieren in den Funktionen \"WritePCXImage\", \"WriteOneJNGImage\", \"WritePDFImage\", \"ReadPSDLayersInternal\", \"ReadOnePNGImage\", \"ReadMIFFImage\", \"ReadMATImage\", \"ReadJP2Image\", \"ReadOneMNGImage\", \"SFWScan\", \"formatIPTC\" und \"load_level\". Durch fehlende Speicherinitialisierungen und Validierungen k\u00f6nnen durch pr\u00e4parierte Bilddateien diverse Speicherlecks ausgenutzt werden. Ein entfernter, anonymer Angreifer kann so Zugriff auf eventuell sensitive Informationen erlangen und einen Denial of Service Zustand herbeif\u00fchren. Zur erfolgreichen Ausnutzung dieser Schwachstelle muss der Angreifer den Benutzer dazu bringen, eine modifizierte Bilddatei hochzuladen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363",
"T010617"
]
},
"release_date": "2017-08-22T22:00:00.000+00:00",
"title": "CVE-2017-13060"
},
{
"cve": "CVE-2017-13061",
"notes": [
{
"category": "description",
"text": "In ImageMagick existieren mehrere Schwachstellen. Die Schwachstellen existieren in den Funktionen \"WritePCXImage\", \"WriteOneJNGImage\", \"WritePDFImage\", \"ReadPSDLayersInternal\", \"ReadOnePNGImage\", \"ReadMIFFImage\", \"ReadMATImage\", \"ReadJP2Image\", \"ReadOneMNGImage\", \"SFWScan\", \"formatIPTC\" und \"load_level\". Durch fehlende Speicherinitialisierungen und Validierungen k\u00f6nnen durch pr\u00e4parierte Bilddateien diverse Speicherlecks ausgenutzt werden. Ein entfernter, anonymer Angreifer kann so Zugriff auf eventuell sensitive Informationen erlangen und einen Denial of Service Zustand herbeif\u00fchren. Zur erfolgreichen Ausnutzung dieser Schwachstelle muss der Angreifer den Benutzer dazu bringen, eine modifizierte Bilddatei hochzuladen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363",
"T010617"
]
},
"release_date": "2017-08-22T22:00:00.000+00:00",
"title": "CVE-2017-13061"
},
{
"cve": "CVE-2017-13062",
"notes": [
{
"category": "description",
"text": "In ImageMagick existieren mehrere Schwachstellen. Die Schwachstellen existieren in den Funktionen \"WritePCXImage\", \"WriteOneJNGImage\", \"WritePDFImage\", \"ReadPSDLayersInternal\", \"ReadOnePNGImage\", \"ReadMIFFImage\", \"ReadMATImage\", \"ReadJP2Image\", \"ReadOneMNGImage\", \"SFWScan\", \"formatIPTC\" und \"load_level\". Durch fehlende Speicherinitialisierungen und Validierungen k\u00f6nnen durch pr\u00e4parierte Bilddateien diverse Speicherlecks ausgenutzt werden. Ein entfernter, anonymer Angreifer kann so Zugriff auf eventuell sensitive Informationen erlangen und einen Denial of Service Zustand herbeif\u00fchren. Zur erfolgreichen Ausnutzung dieser Schwachstelle muss der Angreifer den Benutzer dazu bringen, eine modifizierte Bilddatei hochzuladen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363",
"T010617"
]
},
"release_date": "2017-08-22T22:00:00.000+00:00",
"title": "CVE-2017-13062"
},
{
"cve": "CVE-2017-13131",
"notes": [
{
"category": "description",
"text": "In ImageMagick existieren mehrere Schwachstellen. Die Schwachstellen existieren in den Funktionen \"WritePCXImage\", \"WriteOneJNGImage\", \"WritePDFImage\", \"ReadPSDLayersInternal\", \"ReadOnePNGImage\", \"ReadMIFFImage\", \"ReadMATImage\", \"ReadJP2Image\", \"ReadOneMNGImage\", \"SFWScan\", \"formatIPTC\" und \"load_level\". Durch fehlende Speicherinitialisierungen und Validierungen k\u00f6nnen durch pr\u00e4parierte Bilddateien diverse Speicherlecks ausgenutzt werden. Ein entfernter, anonymer Angreifer kann so Zugriff auf eventuell sensitive Informationen erlangen und einen Denial of Service Zustand herbeif\u00fchren. Zur erfolgreichen Ausnutzung dieser Schwachstelle muss der Angreifer den Benutzer dazu bringen, eine modifizierte Bilddatei hochzuladen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363",
"T010617"
]
},
"release_date": "2017-08-22T22:00:00.000+00:00",
"title": "CVE-2017-13131"
},
{
"cve": "CVE-2017-13132",
"notes": [
{
"category": "description",
"text": "In ImageMagick existieren mehrere Schwachstellen. Die Schwachstellen existieren in den Funktionen \"WritePCXImage\", \"WriteOneJNGImage\", \"WritePDFImage\", \"ReadPSDLayersInternal\", \"ReadOnePNGImage\", \"ReadMIFFImage\", \"ReadMATImage\", \"ReadJP2Image\", \"ReadOneMNGImage\", \"SFWScan\", \"formatIPTC\" und \"load_level\". Durch fehlende Speicherinitialisierungen und Validierungen k\u00f6nnen durch pr\u00e4parierte Bilddateien diverse Speicherlecks ausgenutzt werden. Ein entfernter, anonymer Angreifer kann so Zugriff auf eventuell sensitive Informationen erlangen und einen Denial of Service Zustand herbeif\u00fchren. Zur erfolgreichen Ausnutzung dieser Schwachstelle muss der Angreifer den Benutzer dazu bringen, eine modifizierte Bilddatei hochzuladen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363",
"T010617"
]
},
"release_date": "2017-08-22T22:00:00.000+00:00",
"title": "CVE-2017-13132"
},
{
"cve": "CVE-2017-13133",
"notes": [
{
"category": "description",
"text": "In ImageMagick existieren mehrere Schwachstellen. Die Schwachstellen existieren in den Funktionen \"WritePCXImage\", \"WriteOneJNGImage\", \"WritePDFImage\", \"ReadPSDLayersInternal\", \"ReadOnePNGImage\", \"ReadMIFFImage\", \"ReadMATImage\", \"ReadJP2Image\", \"ReadOneMNGImage\", \"SFWScan\", \"formatIPTC\" und \"load_level\". Durch fehlende Speicherinitialisierungen und Validierungen k\u00f6nnen durch pr\u00e4parierte Bilddateien diverse Speicherlecks ausgenutzt werden. Ein entfernter, anonymer Angreifer kann so Zugriff auf eventuell sensitive Informationen erlangen und einen Denial of Service Zustand herbeif\u00fchren. Zur erfolgreichen Ausnutzung dieser Schwachstelle muss der Angreifer den Benutzer dazu bringen, eine modifizierte Bilddatei hochzuladen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363",
"T010617"
]
},
"release_date": "2017-08-22T22:00:00.000+00:00",
"title": "CVE-2017-13133"
},
{
"cve": "CVE-2017-13134",
"notes": [
{
"category": "description",
"text": "In ImageMagick existieren mehrere Schwachstellen. Die Schwachstellen existieren in den Funktionen \"WritePCXImage\", \"WriteOneJNGImage\", \"WritePDFImage\", \"ReadPSDLayersInternal\", \"ReadOnePNGImage\", \"ReadMIFFImage\", \"ReadMATImage\", \"ReadJP2Image\", \"ReadOneMNGImage\", \"SFWScan\", \"formatIPTC\" und \"load_level\". Durch fehlende Speicherinitialisierungen und Validierungen k\u00f6nnen durch pr\u00e4parierte Bilddateien diverse Speicherlecks ausgenutzt werden. Ein entfernter, anonymer Angreifer kann so Zugriff auf eventuell sensitive Informationen erlangen und einen Denial of Service Zustand herbeif\u00fchren. Zur erfolgreichen Ausnutzung dieser Schwachstelle muss der Angreifer den Benutzer dazu bringen, eine modifizierte Bilddatei hochzuladen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363",
"T010617"
]
},
"release_date": "2017-08-22T22:00:00.000+00:00",
"title": "CVE-2017-13134"
},
{
"cve": "CVE-2017-13139",
"notes": [
{
"category": "description",
"text": "In ImageMagick existieren mehrere Schwachstellen. Die Schwachstellen existieren in den Funktionen \"WritePCXImage\", \"WriteOneJNGImage\", \"WritePDFImage\", \"ReadPSDLayersInternal\", \"ReadOnePNGImage\", \"ReadMIFFImage\", \"ReadMATImage\", \"ReadJP2Image\", \"ReadOneMNGImage\", \"SFWScan\", \"formatIPTC\" und \"load_level\". Durch fehlende Speicherinitialisierungen und Validierungen k\u00f6nnen durch pr\u00e4parierte Bilddateien diverse Speicherlecks ausgenutzt werden. Ein entfernter, anonymer Angreifer kann so Zugriff auf eventuell sensitive Informationen erlangen und einen Denial of Service Zustand herbeif\u00fchren. Zur erfolgreichen Ausnutzung dieser Schwachstelle muss der Angreifer den Benutzer dazu bringen, eine modifizierte Bilddatei hochzuladen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363",
"T010617"
]
},
"release_date": "2017-08-22T22:00:00.000+00:00",
"title": "CVE-2017-13139"
},
{
"cve": "CVE-2017-13140",
"notes": [
{
"category": "description",
"text": "In ImageMagick existieren mehrere Schwachstellen. Die Schwachstellen existieren in den Funktionen \"WritePCXImage\", \"WriteOneJNGImage\", \"WritePDFImage\", \"ReadPSDLayersInternal\", \"ReadOnePNGImage\", \"ReadMIFFImage\", \"ReadMATImage\", \"ReadJP2Image\", \"ReadOneMNGImage\", \"SFWScan\", \"formatIPTC\" und \"load_level\". Durch fehlende Speicherinitialisierungen und Validierungen k\u00f6nnen durch pr\u00e4parierte Bilddateien diverse Speicherlecks ausgenutzt werden. Ein entfernter, anonymer Angreifer kann so Zugriff auf eventuell sensitive Informationen erlangen und einen Denial of Service Zustand herbeif\u00fchren. Zur erfolgreichen Ausnutzung dieser Schwachstelle muss der Angreifer den Benutzer dazu bringen, eine modifizierte Bilddatei hochzuladen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363",
"T010617"
]
},
"release_date": "2017-08-22T22:00:00.000+00:00",
"title": "CVE-2017-13140"
},
{
"cve": "CVE-2017-13141",
"notes": [
{
"category": "description",
"text": "In ImageMagick existieren mehrere Schwachstellen. Die Schwachstellen existieren in den Funktionen \"WritePCXImage\", \"WriteOneJNGImage\", \"WritePDFImage\", \"ReadPSDLayersInternal\", \"ReadOnePNGImage\", \"ReadMIFFImage\", \"ReadMATImage\", \"ReadJP2Image\", \"ReadOneMNGImage\", \"SFWScan\", \"formatIPTC\" und \"load_level\". Durch fehlende Speicherinitialisierungen und Validierungen k\u00f6nnen durch pr\u00e4parierte Bilddateien diverse Speicherlecks ausgenutzt werden. Ein entfernter, anonymer Angreifer kann so Zugriff auf eventuell sensitive Informationen erlangen und einen Denial of Service Zustand herbeif\u00fchren. Zur erfolgreichen Ausnutzung dieser Schwachstelle muss der Angreifer den Benutzer dazu bringen, eine modifizierte Bilddatei hochzuladen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363",
"T010617"
]
},
"release_date": "2017-08-22T22:00:00.000+00:00",
"title": "CVE-2017-13141"
},
{
"cve": "CVE-2017-13142",
"notes": [
{
"category": "description",
"text": "In ImageMagick existieren mehrere Schwachstellen. Die Schwachstellen existieren in den Funktionen \"WritePCXImage\", \"WriteOneJNGImage\", \"WritePDFImage\", \"ReadPSDLayersInternal\", \"ReadOnePNGImage\", \"ReadMIFFImage\", \"ReadMATImage\", \"ReadJP2Image\", \"ReadOneMNGImage\", \"SFWScan\", \"formatIPTC\" und \"load_level\". Durch fehlende Speicherinitialisierungen und Validierungen k\u00f6nnen durch pr\u00e4parierte Bilddateien diverse Speicherlecks ausgenutzt werden. Ein entfernter, anonymer Angreifer kann so Zugriff auf eventuell sensitive Informationen erlangen und einen Denial of Service Zustand herbeif\u00fchren. Zur erfolgreichen Ausnutzung dieser Schwachstelle muss der Angreifer den Benutzer dazu bringen, eine modifizierte Bilddatei hochzuladen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363",
"T010617"
]
},
"release_date": "2017-08-22T22:00:00.000+00:00",
"title": "CVE-2017-13142"
},
{
"cve": "CVE-2017-13143",
"notes": [
{
"category": "description",
"text": "In ImageMagick existieren mehrere Schwachstellen. Die Schwachstellen existieren in den Funktionen \"WritePCXImage\", \"WriteOneJNGImage\", \"WritePDFImage\", \"ReadPSDLayersInternal\", \"ReadOnePNGImage\", \"ReadMIFFImage\", \"ReadMATImage\", \"ReadJP2Image\", \"ReadOneMNGImage\", \"SFWScan\", \"formatIPTC\" und \"load_level\". Durch fehlende Speicherinitialisierungen und Validierungen k\u00f6nnen durch pr\u00e4parierte Bilddateien diverse Speicherlecks ausgenutzt werden. Ein entfernter, anonymer Angreifer kann so Zugriff auf eventuell sensitive Informationen erlangen und einen Denial of Service Zustand herbeif\u00fchren. Zur erfolgreichen Ausnutzung dieser Schwachstelle muss der Angreifer den Benutzer dazu bringen, eine modifizierte Bilddatei hochzuladen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363",
"T010617"
]
},
"release_date": "2017-08-22T22:00:00.000+00:00",
"title": "CVE-2017-13143"
},
{
"cve": "CVE-2017-13144",
"notes": [
{
"category": "description",
"text": "In ImageMagick existieren mehrere Schwachstellen. Die Schwachstellen existieren in den Funktionen \"WritePCXImage\", \"WriteOneJNGImage\", \"WritePDFImage\", \"ReadPSDLayersInternal\", \"ReadOnePNGImage\", \"ReadMIFFImage\", \"ReadMATImage\", \"ReadJP2Image\", \"ReadOneMNGImage\", \"SFWScan\", \"formatIPTC\" und \"load_level\". Durch fehlende Speicherinitialisierungen und Validierungen k\u00f6nnen durch pr\u00e4parierte Bilddateien diverse Speicherlecks ausgenutzt werden. Ein entfernter, anonymer Angreifer kann so Zugriff auf eventuell sensitive Informationen erlangen und einen Denial of Service Zustand herbeif\u00fchren. Zur erfolgreichen Ausnutzung dieser Schwachstelle muss der Angreifer den Benutzer dazu bringen, eine modifizierte Bilddatei hochzuladen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363",
"T010617"
]
},
"release_date": "2017-08-22T22:00:00.000+00:00",
"title": "CVE-2017-13144"
},
{
"cve": "CVE-2017-13145",
"notes": [
{
"category": "description",
"text": "In ImageMagick existieren mehrere Schwachstellen. Die Schwachstellen existieren in den Funktionen \"WritePCXImage\", \"WriteOneJNGImage\", \"WritePDFImage\", \"ReadPSDLayersInternal\", \"ReadOnePNGImage\", \"ReadMIFFImage\", \"ReadMATImage\", \"ReadJP2Image\", \"ReadOneMNGImage\", \"SFWScan\", \"formatIPTC\" und \"load_level\". Durch fehlende Speicherinitialisierungen und Validierungen k\u00f6nnen durch pr\u00e4parierte Bilddateien diverse Speicherlecks ausgenutzt werden. Ein entfernter, anonymer Angreifer kann so Zugriff auf eventuell sensitive Informationen erlangen und einen Denial of Service Zustand herbeif\u00fchren. Zur erfolgreichen Ausnutzung dieser Schwachstelle muss der Angreifer den Benutzer dazu bringen, eine modifizierte Bilddatei hochzuladen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363",
"T010617"
]
},
"release_date": "2017-08-22T22:00:00.000+00:00",
"title": "CVE-2017-13145"
},
{
"cve": "CVE-2017-13146",
"notes": [
{
"category": "description",
"text": "In ImageMagick existieren mehrere Schwachstellen. Die Schwachstellen existieren in den Funktionen \"WritePCXImage\", \"WriteOneJNGImage\", \"WritePDFImage\", \"ReadPSDLayersInternal\", \"ReadOnePNGImage\", \"ReadMIFFImage\", \"ReadMATImage\", \"ReadJP2Image\", \"ReadOneMNGImage\", \"SFWScan\", \"formatIPTC\" und \"load_level\". Durch fehlende Speicherinitialisierungen und Validierungen k\u00f6nnen durch pr\u00e4parierte Bilddateien diverse Speicherlecks ausgenutzt werden. Ein entfernter, anonymer Angreifer kann so Zugriff auf eventuell sensitive Informationen erlangen und einen Denial of Service Zustand herbeif\u00fchren. Zur erfolgreichen Ausnutzung dieser Schwachstelle muss der Angreifer den Benutzer dazu bringen, eine modifizierte Bilddatei hochzuladen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363",
"T010617"
]
},
"release_date": "2017-08-22T22:00:00.000+00:00",
"title": "CVE-2017-13146"
}
]
}
wid-sec-w-2024-0172
Vulnerability from csaf_certbund
Published
2017-08-06 22:00
Modified
2024-08-22 22:00
Summary
ImageMagick: Mehrere Schwachstellen ermöglichen Denial of Service
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
ImageMagick ist eine Sammlung von Programmbibliotheken und Werkzeugen, die Grafiken in zahlreichen Formaten verarbeiten kann.
Angriff
Ein entfernter, anonymer oder authentifizierter Angreifer kann mehrere Schwachstellen in ImageMagick ausnutzen, um einen Denial of Service Angriff durchzuführen.
Betroffene Betriebssysteme
- Linux
- UNIX
- Windows
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "ImageMagick ist eine Sammlung von Programmbibliotheken und Werkzeugen, die Grafiken in zahlreichen Formaten verarbeiten kann.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer oder authentifizierter Angreifer kann mehrere Schwachstellen in ImageMagick ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux\n- UNIX\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-0172 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2017/wid-sec-w-2024-0172.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-0172 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0172"
},
{
"category": "external",
"summary": "National Vulnerability Database #CVE-2017-12566 vom 2017-08-04",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12566"
},
{
"category": "external",
"summary": "National Vulnerability Database #CVE-2017-12565 vom 2017-08-04",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12565"
},
{
"category": "external",
"summary": "National Vulnerability Database #CVE-2017-12564 vom 2017-08-04",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12564"
},
{
"category": "external",
"summary": "National Vulnerability Database #CVE-2017-12563 vom 2017-08-04",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12563"
},
{
"category": "external",
"summary": "National Vulnerability Database #CVE-2017-12587 vom 2017-08-04",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12587"
},
{
"category": "external",
"summary": "National Vulnerability Database #CVE-2017-12435 vom 2017-08-04",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12435"
},
{
"category": "external",
"summary": "National Vulnerability Database #CVE-2017-12434 vom 2017-08-04",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12434"
},
{
"category": "external",
"summary": "National Vulnerability Database #CVE-2017-12433 vom 2017-08-04",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12433"
},
{
"category": "external",
"summary": "National Vulnerability Database #CVE-2017-12432 vom 2017-08-04",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12432"
},
{
"category": "external",
"summary": "National Vulnerability Database #CVE-2017-12431 vom 2017-08-04",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12431"
},
{
"category": "external",
"summary": "National Vulnerability Database #CVE-2017-12430 vom 2017-08-04",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12430"
},
{
"category": "external",
"summary": "National Vulnerability Database #CVE-2017-12429 vom 2017-08-04",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12429"
},
{
"category": "external",
"summary": "National Vulnerability Database #CVE-2017-12428 vom 2017-08-04",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12428"
},
{
"category": "external",
"summary": "National Vulnerability Database #CVE-2017-12418 vom 2017-08-04",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12418"
},
{
"category": "external",
"summary": "Debian Security Advisory DSA-4019 vom 2017-11-06",
"url": "https://www.debian.org/security/2017/dsa-4019"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2017:2949-1 vom 2017-11-08",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172949-1.html"
},
{
"category": "external",
"summary": "Debian Security Advisory DSA-4040 vom 2017-11-18",
"url": "https://www.debian.org/security/2017/dsa-4040"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2017:3056-1 vom 2017-11-24",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20173056-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2017:3168-1 vom 2017-12-01",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20173168-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2017:3388-1 vom 2017-12-21",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20173388-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2017:3378-1 vom 2017-12-21",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20173378-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2017:3435-1 vom 2017-12-28",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20173435-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0043-1 vom 2018-01-09",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180043-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0017-1 vom 2018-01-05",
"url": "https://www.suse.com/de-de/support/update/announcement/2018/suse-su-20180017-1/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0130-1 vom 2018-01-18",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180130-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0132-1 vom 2018-01-18",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180132-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0197-1 vom 2018-01-25",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180197-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0350-1 vom 2018-02-02",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180350-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0349-1 vom 2018-02-02",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0413-1 vom 2018-02-10",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180413-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0486-1 vom 2018-02-20",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180486-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0524-1 vom 2018-02-22",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180524-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0581-1 vom 2018-03-02",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180581-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0672-1 vom 2018-03-15",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180672-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0770-1 vom 2018-03-22",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180770-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0857-1 vom 2018-04-03",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180857-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0864-1 vom 2018-04-04",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180864-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0880-1 vom 2018-04-06",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180880-1.html"
},
{
"category": "external",
"summary": "Debian Security Advisory DSA-4204 vom 2018-05-20",
"url": "https://www.debian.org/security/2018/dsa-4204"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:3808-1 vom 2018-11-19",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20183808-1.html"
},
{
"category": "external",
"summary": "Debian Security Advisory DLA-2366 vom 2020-09-08",
"url": "https://lists.debian.org/debian-lts-announce/2020/debian-lts-announce-202009/msg00007.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-5335-1 vom 2022-03-21",
"url": "https://ubuntu.com/security/notices/USN-5335-1"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2024-2432 vom 2024-01-23",
"url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2432.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2024-1926 vom 2024-03-19",
"url": "https://alas.aws.amazon.com/ALAS-2024-1926.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-6980-1 vom 2024-08-22",
"url": "https://ubuntu.com/security/notices/USN-6980-1"
}
],
"source_lang": "en-US",
"title": "ImageMagick: Mehrere Schwachstellen erm\u00f6glichen Denial of Service",
"tracking": {
"current_release_date": "2024-08-22T22:00:00.000+00:00",
"generator": {
"date": "2024-08-23T08:12:55.843+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.6"
}
},
"id": "WID-SEC-W-2024-0172",
"initial_release_date": "2017-08-06T22:00:00.000+00:00",
"revision_history": [
{
"date": "2017-08-06T22:00:00.000+00:00",
"number": "1",
"summary": "Initial Release"
},
{
"date": "2017-11-05T23:00:00.000+00:00",
"number": "2",
"summary": "cves"
},
{
"date": "2017-11-05T23:00:00.000+00:00",
"number": "3",
"summary": "Added references"
},
{
"date": "2017-11-05T23:00:00.000+00:00",
"number": "4",
"summary": "New remediations available"
},
{
"date": "2017-11-08T23:00:00.000+00:00",
"number": "5",
"summary": "New remediations available"
},
{
"date": "2017-11-19T23:00:00.000+00:00",
"number": "6",
"summary": "New remediations available"
},
{
"date": "2017-11-23T23:00:00.000+00:00",
"number": "7",
"summary": "New remediations available"
},
{
"date": "2017-11-30T23:00:00.000+00:00",
"number": "8",
"summary": "New remediations available"
},
{
"date": "2017-12-20T23:00:00.000+00:00",
"number": "9",
"summary": "New remediations available"
},
{
"date": "2017-12-27T23:00:00.000+00:00",
"number": "10",
"summary": "New remediations available"
},
{
"date": "2017-12-27T23:00:00.000+00:00",
"number": "11",
"summary": "Version nicht vorhanden"
},
{
"date": "2018-01-04T23:00:00.000+00:00",
"number": "12",
"summary": "SUSE:SUSE-SU-2018:0017-1"
},
{
"date": "2018-01-04T23:00:00.000+00:00",
"number": "13",
"summary": "Version nicht vorhanden"
},
{
"date": "2018-01-09T23:00:00.000+00:00",
"number": "14",
"summary": "New remediations available"
},
{
"date": "2018-01-09T23:00:00.000+00:00",
"number": "15",
"summary": "Version nicht vorhanden"
},
{
"date": "2018-01-09T23:00:00.000+00:00",
"number": "16",
"summary": "Version nicht vorhanden"
},
{
"date": "2018-01-18T23:00:00.000+00:00",
"number": "17",
"summary": "New remediations available"
},
{
"date": "2018-01-24T23:00:00.000+00:00",
"number": "18",
"summary": "New remediations available"
},
{
"date": "2018-02-04T23:00:00.000+00:00",
"number": "19",
"summary": "New remediations available"
},
{
"date": "2018-02-11T23:00:00.000+00:00",
"number": "20",
"summary": "New remediations available"
},
{
"date": "2018-02-20T23:00:00.000+00:00",
"number": "21",
"summary": "New remediations available"
},
{
"date": "2018-02-22T23:00:00.000+00:00",
"number": "22",
"summary": "New remediations available"
},
{
"date": "2018-03-04T23:00:00.000+00:00",
"number": "23",
"summary": "New remediations available"
},
{
"date": "2018-03-14T23:00:00.000+00:00",
"number": "24",
"summary": "New remediations available"
},
{
"date": "2018-03-22T23:00:00.000+00:00",
"number": "25",
"summary": "New remediations available"
},
{
"date": "2018-04-03T22:00:00.000+00:00",
"number": "26",
"summary": "New remediations available"
},
{
"date": "2018-04-05T22:00:00.000+00:00",
"number": "27",
"summary": "New remediations available"
},
{
"date": "2018-05-21T22:00:00.000+00:00",
"number": "28",
"summary": "New remediations available"
},
{
"date": "2018-11-19T23:00:00.000+00:00",
"number": "29",
"summary": "New remediations available"
},
{
"date": "2020-09-07T22:00:00.000+00:00",
"number": "30",
"summary": "Neue Updates von Debian aufgenommen"
},
{
"date": "2022-03-21T23:00:00.000+00:00",
"number": "31",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2024-01-22T23:00:00.000+00:00",
"number": "32",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2024-01-29T23:00:00.000+00:00",
"number": "33",
"summary": "Schreibfehler korrigiert"
},
{
"date": "2024-03-19T23:00:00.000+00:00",
"number": "34",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2024-08-22T22:00:00.000+00:00",
"number": "35",
"summary": "Neue Updates von Ubuntu aufgenommen"
}
],
"status": "final",
"version": "35"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Amazon Linux 2",
"product": {
"name": "Amazon Linux 2",
"product_id": "398363",
"product_identification_helper": {
"cpe": "cpe:/o:amazon:linux_2:-"
}
}
}
],
"category": "vendor",
"name": "Amazon"
},
{
"branches": [
{
"category": "product_name",
"name": "Debian Linux",
"product": {
"name": "Debian Linux",
"product_id": "2951",
"product_identification_helper": {
"cpe": "cpe:/o:debian:debian_linux:-"
}
}
}
],
"category": "vendor",
"name": "Debian"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=7.0.6-5",
"product": {
"name": "Open Source ImageMagick \u003c=7.0.6-5",
"product_id": "T010510"
}
},
{
"category": "product_version_range",
"name": "\u003c=7.0.6-5",
"product": {
"name": "Open Source ImageMagick \u003c=7.0.6-5",
"product_id": "T010510-fixed"
}
}
],
"category": "product_name",
"name": "ImageMagick"
}
],
"category": "vendor",
"name": "Open Source"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
},
{
"branches": [
{
"category": "product_name",
"name": "Ubuntu Linux",
"product": {
"name": "Ubuntu Linux",
"product_id": "T000126",
"product_identification_helper": {
"cpe": "cpe:/o:canonical:ubuntu_linux:-"
}
}
}
],
"category": "vendor",
"name": "Ubuntu"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-11446",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-11446"
},
{
"cve": "CVE-2017-11523",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-11523"
},
{
"cve": "CVE-2017-11533",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-11533"
},
{
"cve": "CVE-2017-11535",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-11535"
},
{
"cve": "CVE-2017-11537",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-11537"
},
{
"cve": "CVE-2017-11639",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-11639"
},
{
"cve": "CVE-2017-11640",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-11640"
},
{
"cve": "CVE-2017-12428",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-12428"
},
{
"cve": "CVE-2017-12431",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-12431"
},
{
"cve": "CVE-2017-12432",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-12432"
},
{
"cve": "CVE-2017-12434",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-12434"
},
{
"cve": "CVE-2017-12563",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-12563"
},
{
"cve": "CVE-2017-12587",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-12587"
},
{
"cve": "CVE-2017-12640",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-12640"
},
{
"cve": "CVE-2017-12671",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-12671"
},
{
"cve": "CVE-2017-12691",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-12691"
},
{
"cve": "CVE-2017-13139",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-13139"
},
{
"cve": "CVE-2017-13140",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-13140"
},
{
"cve": "CVE-2017-13141",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-13141"
},
{
"cve": "CVE-2017-13142",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-13142"
},
{
"cve": "CVE-2017-13143",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-13143"
},
{
"cve": "CVE-2017-13144",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-13144"
},
{
"cve": "CVE-2017-13145",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-13145"
},
{
"cve": "CVE-2017-9500",
"notes": [
{
"category": "description",
"text": "Es existieren mehrere Schwachstellen in ImageMagick. Die Schwachstellen befinden sich in verschiedenen Funktionen und werden u. a. durch Speicherbesch\u00e4digungen und \"use-after-free\" Fehler verursacht. Ein entfernter, anonymer oder authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Angriff durchf\u00fchren. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen muss der Angreifer den Benutzer dazu bringen, eine modifizierte Datei zu \u00f6ffnen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363"
],
"last_affected": [
"T010510"
]
},
"release_date": "2017-08-06T22:00:00.000+00:00",
"title": "CVE-2017-9500"
}
]
}
WID-SEC-W-2024-0171
Vulnerability from csaf_certbund
Published
2017-08-22 22:00
Modified
2024-03-19 23:00
Summary
ImageMagick: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
ImageMagick ist eine Sammlung von Programmbibliotheken und Werkzeugen, die Grafiken in zahlreichen Formaten verarbeiten kann.
Angriff
Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in ImageMagick ausnutzen, um einen Denial of Service Angriff durchzuführen und Zugriff auf eventuell sensitive Informationen zu erlangen.
Betroffene Betriebssysteme
- UNIX
- Linux
- Windows
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "ImageMagick ist eine Sammlung von Programmbibliotheken und Werkzeugen, die Grafiken in zahlreichen Formaten verarbeiten kann.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in ImageMagick ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren und Zugriff auf eventuell sensitive Informationen zu erlangen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- UNIX\n- Linux\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-0171 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2017/wid-sec-w-2024-0171.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-0171 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0171"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2017-13141 vom 2017-08-22",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13141"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2017-13142 vom 2017-08-22",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13142"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2017-13143 vom 2017-08-22",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13143"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2017-13144 vom 2017-08-22",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13144"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2017-13145 vom 2017-08-22",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13145"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2017-13146 vom 2017-08-22",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13146"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2017-13131 vom 2017-08-22",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13131"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2017-13132 vom 2017-08-22",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13132"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2017-13133 vom 2017-08-22",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13133"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2017-13134 vom 2017-08-22",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13134"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2017-13139 vom 2017-08-22",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13139"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2017-13140 vom 2017-08-22",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13140"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2017-13062 vom 2017-08-22",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13062"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2017-13061 vom 2017-08-22",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13061"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2017-13060 vom 2017-08-22",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13060"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2017-13059 vom 2017-08-22",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13059"
},
{
"category": "external",
"summary": "National Vulnerability Database CVE-2017-13058 vom 2017-08-22",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13058"
},
{
"category": "external",
"summary": "Debian Security Advisory DSA-4019 vom 2017-11-06",
"url": "https://www.debian.org/security/2017/dsa-4019"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2017:2949-1 vom 2017-11-08",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172949-1.html"
},
{
"category": "external",
"summary": "Debian Security Advisory DSA-4032 vom 2017-11-12",
"url": "https://www.debian.org/security/2017/dsa-4032"
},
{
"category": "external",
"summary": "Debian Security Advisory DSA-4040 vom 2017-11-18",
"url": "https://www.debian.org/security/2017/dsa-4040"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2017:3056-1 vom 2017-11-24",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20173056-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2017:3168-1 vom 2017-12-01",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20173168-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2017:3388-1 vom 2017-12-21",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20173388-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2017:3378-1 vom 2017-12-21",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20173378-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2017:3435-1 vom 2017-12-28",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20173435-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0017-1 vom 2018-01-04",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180017-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0043-1 vom 2018-01-09",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180043-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0130-1 vom 2018-01-18",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180130-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0132-1 vom 2018-01-18",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180132-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0197-1 vom 2018-01-25",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180197-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0350-1 vom 2018-02-02",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180350-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0349-1 vom 2018-02-02",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0413-1 vom 2018-02-10",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180413-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0486-1 vom 2018-02-20",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180486-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0524-1 vom 2018-02-22",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180524-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:0581-1 vom 2018-03-02",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180581-1.html"
},
{
"category": "external",
"summary": "Debian Security Advisory DSA-4204 vom 2018-05-20",
"url": "https://www.debian.org/security/2018/dsa-4204"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2018:3191-1 vom 2018-10-18",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20183191-1.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-4222-1 vom 2019-12-16",
"url": "https://usn.ubuntu.com/4222-1/"
},
{
"category": "external",
"summary": "Debian Security Advisory DLA-2366 vom 2020-09-08",
"url": "https://lists.debian.org/debian-lts-announce/2020/debian-lts-announce-202009/msg00007.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2024-2432 vom 2024-01-23",
"url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2432.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2024-1926 vom 2024-03-19",
"url": "https://alas.aws.amazon.com/ALAS-2024-1926.html"
}
],
"source_lang": "en-US",
"title": "ImageMagick: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2024-03-19T23:00:00.000+00:00",
"generator": {
"date": "2024-08-15T18:04:07.558+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.5"
}
},
"id": "WID-SEC-W-2024-0171",
"initial_release_date": "2017-08-22T22:00:00.000+00:00",
"revision_history": [
{
"date": "2017-08-22T22:00:00.000+00:00",
"number": "1",
"summary": "Initial Release"
},
{
"date": "2017-08-22T22:00:00.000+00:00",
"number": "2",
"summary": "Version nicht vorhanden"
},
{
"date": "2017-11-05T23:00:00.000+00:00",
"number": "3",
"summary": "New remediations available"
},
{
"date": "2017-11-08T23:00:00.000+00:00",
"number": "4",
"summary": "New remediations available"
},
{
"date": "2017-11-12T23:00:00.000+00:00",
"number": "5",
"summary": "New remediations available"
},
{
"date": "2017-11-19T23:00:00.000+00:00",
"number": "6",
"summary": "New remediations available"
},
{
"date": "2017-11-23T23:00:00.000+00:00",
"number": "7",
"summary": "New remediations available"
},
{
"date": "2017-11-30T23:00:00.000+00:00",
"number": "8",
"summary": "New remediations available"
},
{
"date": "2017-12-20T23:00:00.000+00:00",
"number": "9",
"summary": "New remediations available"
},
{
"date": "2017-12-27T23:00:00.000+00:00",
"number": "10",
"summary": "New remediations available"
},
{
"date": "2018-01-04T23:00:00.000+00:00",
"number": "11",
"summary": "New remediations available"
},
{
"date": "2018-01-09T23:00:00.000+00:00",
"number": "12",
"summary": "New remediations available"
},
{
"date": "2018-01-18T23:00:00.000+00:00",
"number": "13",
"summary": "New remediations available"
},
{
"date": "2018-01-24T23:00:00.000+00:00",
"number": "14",
"summary": "New remediations available"
},
{
"date": "2018-02-04T23:00:00.000+00:00",
"number": "15",
"summary": "New remediations available"
},
{
"date": "2018-02-11T23:00:00.000+00:00",
"number": "16",
"summary": "New remediations available"
},
{
"date": "2018-02-20T23:00:00.000+00:00",
"number": "17",
"summary": "New remediations available"
},
{
"date": "2018-02-22T23:00:00.000+00:00",
"number": "18",
"summary": "New remediations available"
},
{
"date": "2018-03-04T23:00:00.000+00:00",
"number": "19",
"summary": "New remediations available"
},
{
"date": "2018-05-21T22:00:00.000+00:00",
"number": "20",
"summary": "New remediations available"
},
{
"date": "2018-10-17T22:00:00.000+00:00",
"number": "21",
"summary": "New remediations available"
},
{
"date": "2019-12-16T23:00:00.000+00:00",
"number": "22",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2020-09-07T22:00:00.000+00:00",
"number": "23",
"summary": "Neue Updates von Debian aufgenommen"
},
{
"date": "2024-01-22T23:00:00.000+00:00",
"number": "24",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2024-03-19T23:00:00.000+00:00",
"number": "25",
"summary": "Neue Updates von Amazon aufgenommen"
}
],
"status": "final",
"version": "25"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Amazon Linux 2",
"product": {
"name": "Amazon Linux 2",
"product_id": "398363",
"product_identification_helper": {
"cpe": "cpe:/o:amazon:linux_2:-"
}
}
}
],
"category": "vendor",
"name": "Amazon"
},
{
"branches": [
{
"category": "product_name",
"name": "Debian Linux",
"product": {
"name": "Debian Linux",
"product_id": "2951",
"product_identification_helper": {
"cpe": "cpe:/o:debian:debian_linux:-"
}
}
}
],
"category": "vendor",
"name": "Debian"
},
{
"branches": [
{
"category": "product_name",
"name": "Open Source ImageMagick",
"product": {
"name": "Open Source ImageMagick",
"product_id": "T010617",
"product_identification_helper": {
"cpe": "cpe:/a:imagemagick:imagemagick:-"
}
}
}
],
"category": "vendor",
"name": "Open Source"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
},
{
"branches": [
{
"category": "product_name",
"name": "Ubuntu Linux",
"product": {
"name": "Ubuntu Linux",
"product_id": "T000126",
"product_identification_helper": {
"cpe": "cpe:/o:canonical:ubuntu_linux:-"
}
}
}
],
"category": "vendor",
"name": "Ubuntu"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-13058",
"notes": [
{
"category": "description",
"text": "In ImageMagick existieren mehrere Schwachstellen. Die Schwachstellen existieren in den Funktionen \"WritePCXImage\", \"WriteOneJNGImage\", \"WritePDFImage\", \"ReadPSDLayersInternal\", \"ReadOnePNGImage\", \"ReadMIFFImage\", \"ReadMATImage\", \"ReadJP2Image\", \"ReadOneMNGImage\", \"SFWScan\", \"formatIPTC\" und \"load_level\". Durch fehlende Speicherinitialisierungen und Validierungen k\u00f6nnen durch pr\u00e4parierte Bilddateien diverse Speicherlecks ausgenutzt werden. Ein entfernter, anonymer Angreifer kann so Zugriff auf eventuell sensitive Informationen erlangen und einen Denial of Service Zustand herbeif\u00fchren. Zur erfolgreichen Ausnutzung dieser Schwachstelle muss der Angreifer den Benutzer dazu bringen, eine modifizierte Bilddatei hochzuladen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363",
"T010617"
]
},
"release_date": "2017-08-22T22:00:00.000+00:00",
"title": "CVE-2017-13058"
},
{
"cve": "CVE-2017-13059",
"notes": [
{
"category": "description",
"text": "In ImageMagick existieren mehrere Schwachstellen. Die Schwachstellen existieren in den Funktionen \"WritePCXImage\", \"WriteOneJNGImage\", \"WritePDFImage\", \"ReadPSDLayersInternal\", \"ReadOnePNGImage\", \"ReadMIFFImage\", \"ReadMATImage\", \"ReadJP2Image\", \"ReadOneMNGImage\", \"SFWScan\", \"formatIPTC\" und \"load_level\". Durch fehlende Speicherinitialisierungen und Validierungen k\u00f6nnen durch pr\u00e4parierte Bilddateien diverse Speicherlecks ausgenutzt werden. Ein entfernter, anonymer Angreifer kann so Zugriff auf eventuell sensitive Informationen erlangen und einen Denial of Service Zustand herbeif\u00fchren. Zur erfolgreichen Ausnutzung dieser Schwachstelle muss der Angreifer den Benutzer dazu bringen, eine modifizierte Bilddatei hochzuladen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363",
"T010617"
]
},
"release_date": "2017-08-22T22:00:00.000+00:00",
"title": "CVE-2017-13059"
},
{
"cve": "CVE-2017-13060",
"notes": [
{
"category": "description",
"text": "In ImageMagick existieren mehrere Schwachstellen. Die Schwachstellen existieren in den Funktionen \"WritePCXImage\", \"WriteOneJNGImage\", \"WritePDFImage\", \"ReadPSDLayersInternal\", \"ReadOnePNGImage\", \"ReadMIFFImage\", \"ReadMATImage\", \"ReadJP2Image\", \"ReadOneMNGImage\", \"SFWScan\", \"formatIPTC\" und \"load_level\". Durch fehlende Speicherinitialisierungen und Validierungen k\u00f6nnen durch pr\u00e4parierte Bilddateien diverse Speicherlecks ausgenutzt werden. Ein entfernter, anonymer Angreifer kann so Zugriff auf eventuell sensitive Informationen erlangen und einen Denial of Service Zustand herbeif\u00fchren. Zur erfolgreichen Ausnutzung dieser Schwachstelle muss der Angreifer den Benutzer dazu bringen, eine modifizierte Bilddatei hochzuladen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363",
"T010617"
]
},
"release_date": "2017-08-22T22:00:00.000+00:00",
"title": "CVE-2017-13060"
},
{
"cve": "CVE-2017-13061",
"notes": [
{
"category": "description",
"text": "In ImageMagick existieren mehrere Schwachstellen. Die Schwachstellen existieren in den Funktionen \"WritePCXImage\", \"WriteOneJNGImage\", \"WritePDFImage\", \"ReadPSDLayersInternal\", \"ReadOnePNGImage\", \"ReadMIFFImage\", \"ReadMATImage\", \"ReadJP2Image\", \"ReadOneMNGImage\", \"SFWScan\", \"formatIPTC\" und \"load_level\". Durch fehlende Speicherinitialisierungen und Validierungen k\u00f6nnen durch pr\u00e4parierte Bilddateien diverse Speicherlecks ausgenutzt werden. Ein entfernter, anonymer Angreifer kann so Zugriff auf eventuell sensitive Informationen erlangen und einen Denial of Service Zustand herbeif\u00fchren. Zur erfolgreichen Ausnutzung dieser Schwachstelle muss der Angreifer den Benutzer dazu bringen, eine modifizierte Bilddatei hochzuladen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363",
"T010617"
]
},
"release_date": "2017-08-22T22:00:00.000+00:00",
"title": "CVE-2017-13061"
},
{
"cve": "CVE-2017-13062",
"notes": [
{
"category": "description",
"text": "In ImageMagick existieren mehrere Schwachstellen. Die Schwachstellen existieren in den Funktionen \"WritePCXImage\", \"WriteOneJNGImage\", \"WritePDFImage\", \"ReadPSDLayersInternal\", \"ReadOnePNGImage\", \"ReadMIFFImage\", \"ReadMATImage\", \"ReadJP2Image\", \"ReadOneMNGImage\", \"SFWScan\", \"formatIPTC\" und \"load_level\". Durch fehlende Speicherinitialisierungen und Validierungen k\u00f6nnen durch pr\u00e4parierte Bilddateien diverse Speicherlecks ausgenutzt werden. Ein entfernter, anonymer Angreifer kann so Zugriff auf eventuell sensitive Informationen erlangen und einen Denial of Service Zustand herbeif\u00fchren. Zur erfolgreichen Ausnutzung dieser Schwachstelle muss der Angreifer den Benutzer dazu bringen, eine modifizierte Bilddatei hochzuladen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363",
"T010617"
]
},
"release_date": "2017-08-22T22:00:00.000+00:00",
"title": "CVE-2017-13062"
},
{
"cve": "CVE-2017-13131",
"notes": [
{
"category": "description",
"text": "In ImageMagick existieren mehrere Schwachstellen. Die Schwachstellen existieren in den Funktionen \"WritePCXImage\", \"WriteOneJNGImage\", \"WritePDFImage\", \"ReadPSDLayersInternal\", \"ReadOnePNGImage\", \"ReadMIFFImage\", \"ReadMATImage\", \"ReadJP2Image\", \"ReadOneMNGImage\", \"SFWScan\", \"formatIPTC\" und \"load_level\". Durch fehlende Speicherinitialisierungen und Validierungen k\u00f6nnen durch pr\u00e4parierte Bilddateien diverse Speicherlecks ausgenutzt werden. Ein entfernter, anonymer Angreifer kann so Zugriff auf eventuell sensitive Informationen erlangen und einen Denial of Service Zustand herbeif\u00fchren. Zur erfolgreichen Ausnutzung dieser Schwachstelle muss der Angreifer den Benutzer dazu bringen, eine modifizierte Bilddatei hochzuladen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363",
"T010617"
]
},
"release_date": "2017-08-22T22:00:00.000+00:00",
"title": "CVE-2017-13131"
},
{
"cve": "CVE-2017-13132",
"notes": [
{
"category": "description",
"text": "In ImageMagick existieren mehrere Schwachstellen. Die Schwachstellen existieren in den Funktionen \"WritePCXImage\", \"WriteOneJNGImage\", \"WritePDFImage\", \"ReadPSDLayersInternal\", \"ReadOnePNGImage\", \"ReadMIFFImage\", \"ReadMATImage\", \"ReadJP2Image\", \"ReadOneMNGImage\", \"SFWScan\", \"formatIPTC\" und \"load_level\". Durch fehlende Speicherinitialisierungen und Validierungen k\u00f6nnen durch pr\u00e4parierte Bilddateien diverse Speicherlecks ausgenutzt werden. Ein entfernter, anonymer Angreifer kann so Zugriff auf eventuell sensitive Informationen erlangen und einen Denial of Service Zustand herbeif\u00fchren. Zur erfolgreichen Ausnutzung dieser Schwachstelle muss der Angreifer den Benutzer dazu bringen, eine modifizierte Bilddatei hochzuladen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363",
"T010617"
]
},
"release_date": "2017-08-22T22:00:00.000+00:00",
"title": "CVE-2017-13132"
},
{
"cve": "CVE-2017-13133",
"notes": [
{
"category": "description",
"text": "In ImageMagick existieren mehrere Schwachstellen. Die Schwachstellen existieren in den Funktionen \"WritePCXImage\", \"WriteOneJNGImage\", \"WritePDFImage\", \"ReadPSDLayersInternal\", \"ReadOnePNGImage\", \"ReadMIFFImage\", \"ReadMATImage\", \"ReadJP2Image\", \"ReadOneMNGImage\", \"SFWScan\", \"formatIPTC\" und \"load_level\". Durch fehlende Speicherinitialisierungen und Validierungen k\u00f6nnen durch pr\u00e4parierte Bilddateien diverse Speicherlecks ausgenutzt werden. Ein entfernter, anonymer Angreifer kann so Zugriff auf eventuell sensitive Informationen erlangen und einen Denial of Service Zustand herbeif\u00fchren. Zur erfolgreichen Ausnutzung dieser Schwachstelle muss der Angreifer den Benutzer dazu bringen, eine modifizierte Bilddatei hochzuladen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363",
"T010617"
]
},
"release_date": "2017-08-22T22:00:00.000+00:00",
"title": "CVE-2017-13133"
},
{
"cve": "CVE-2017-13134",
"notes": [
{
"category": "description",
"text": "In ImageMagick existieren mehrere Schwachstellen. Die Schwachstellen existieren in den Funktionen \"WritePCXImage\", \"WriteOneJNGImage\", \"WritePDFImage\", \"ReadPSDLayersInternal\", \"ReadOnePNGImage\", \"ReadMIFFImage\", \"ReadMATImage\", \"ReadJP2Image\", \"ReadOneMNGImage\", \"SFWScan\", \"formatIPTC\" und \"load_level\". Durch fehlende Speicherinitialisierungen und Validierungen k\u00f6nnen durch pr\u00e4parierte Bilddateien diverse Speicherlecks ausgenutzt werden. Ein entfernter, anonymer Angreifer kann so Zugriff auf eventuell sensitive Informationen erlangen und einen Denial of Service Zustand herbeif\u00fchren. Zur erfolgreichen Ausnutzung dieser Schwachstelle muss der Angreifer den Benutzer dazu bringen, eine modifizierte Bilddatei hochzuladen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363",
"T010617"
]
},
"release_date": "2017-08-22T22:00:00.000+00:00",
"title": "CVE-2017-13134"
},
{
"cve": "CVE-2017-13139",
"notes": [
{
"category": "description",
"text": "In ImageMagick existieren mehrere Schwachstellen. Die Schwachstellen existieren in den Funktionen \"WritePCXImage\", \"WriteOneJNGImage\", \"WritePDFImage\", \"ReadPSDLayersInternal\", \"ReadOnePNGImage\", \"ReadMIFFImage\", \"ReadMATImage\", \"ReadJP2Image\", \"ReadOneMNGImage\", \"SFWScan\", \"formatIPTC\" und \"load_level\". Durch fehlende Speicherinitialisierungen und Validierungen k\u00f6nnen durch pr\u00e4parierte Bilddateien diverse Speicherlecks ausgenutzt werden. Ein entfernter, anonymer Angreifer kann so Zugriff auf eventuell sensitive Informationen erlangen und einen Denial of Service Zustand herbeif\u00fchren. Zur erfolgreichen Ausnutzung dieser Schwachstelle muss der Angreifer den Benutzer dazu bringen, eine modifizierte Bilddatei hochzuladen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363",
"T010617"
]
},
"release_date": "2017-08-22T22:00:00.000+00:00",
"title": "CVE-2017-13139"
},
{
"cve": "CVE-2017-13140",
"notes": [
{
"category": "description",
"text": "In ImageMagick existieren mehrere Schwachstellen. Die Schwachstellen existieren in den Funktionen \"WritePCXImage\", \"WriteOneJNGImage\", \"WritePDFImage\", \"ReadPSDLayersInternal\", \"ReadOnePNGImage\", \"ReadMIFFImage\", \"ReadMATImage\", \"ReadJP2Image\", \"ReadOneMNGImage\", \"SFWScan\", \"formatIPTC\" und \"load_level\". Durch fehlende Speicherinitialisierungen und Validierungen k\u00f6nnen durch pr\u00e4parierte Bilddateien diverse Speicherlecks ausgenutzt werden. Ein entfernter, anonymer Angreifer kann so Zugriff auf eventuell sensitive Informationen erlangen und einen Denial of Service Zustand herbeif\u00fchren. Zur erfolgreichen Ausnutzung dieser Schwachstelle muss der Angreifer den Benutzer dazu bringen, eine modifizierte Bilddatei hochzuladen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363",
"T010617"
]
},
"release_date": "2017-08-22T22:00:00.000+00:00",
"title": "CVE-2017-13140"
},
{
"cve": "CVE-2017-13141",
"notes": [
{
"category": "description",
"text": "In ImageMagick existieren mehrere Schwachstellen. Die Schwachstellen existieren in den Funktionen \"WritePCXImage\", \"WriteOneJNGImage\", \"WritePDFImage\", \"ReadPSDLayersInternal\", \"ReadOnePNGImage\", \"ReadMIFFImage\", \"ReadMATImage\", \"ReadJP2Image\", \"ReadOneMNGImage\", \"SFWScan\", \"formatIPTC\" und \"load_level\". Durch fehlende Speicherinitialisierungen und Validierungen k\u00f6nnen durch pr\u00e4parierte Bilddateien diverse Speicherlecks ausgenutzt werden. Ein entfernter, anonymer Angreifer kann so Zugriff auf eventuell sensitive Informationen erlangen und einen Denial of Service Zustand herbeif\u00fchren. Zur erfolgreichen Ausnutzung dieser Schwachstelle muss der Angreifer den Benutzer dazu bringen, eine modifizierte Bilddatei hochzuladen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363",
"T010617"
]
},
"release_date": "2017-08-22T22:00:00.000+00:00",
"title": "CVE-2017-13141"
},
{
"cve": "CVE-2017-13142",
"notes": [
{
"category": "description",
"text": "In ImageMagick existieren mehrere Schwachstellen. Die Schwachstellen existieren in den Funktionen \"WritePCXImage\", \"WriteOneJNGImage\", \"WritePDFImage\", \"ReadPSDLayersInternal\", \"ReadOnePNGImage\", \"ReadMIFFImage\", \"ReadMATImage\", \"ReadJP2Image\", \"ReadOneMNGImage\", \"SFWScan\", \"formatIPTC\" und \"load_level\". Durch fehlende Speicherinitialisierungen und Validierungen k\u00f6nnen durch pr\u00e4parierte Bilddateien diverse Speicherlecks ausgenutzt werden. Ein entfernter, anonymer Angreifer kann so Zugriff auf eventuell sensitive Informationen erlangen und einen Denial of Service Zustand herbeif\u00fchren. Zur erfolgreichen Ausnutzung dieser Schwachstelle muss der Angreifer den Benutzer dazu bringen, eine modifizierte Bilddatei hochzuladen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363",
"T010617"
]
},
"release_date": "2017-08-22T22:00:00.000+00:00",
"title": "CVE-2017-13142"
},
{
"cve": "CVE-2017-13143",
"notes": [
{
"category": "description",
"text": "In ImageMagick existieren mehrere Schwachstellen. Die Schwachstellen existieren in den Funktionen \"WritePCXImage\", \"WriteOneJNGImage\", \"WritePDFImage\", \"ReadPSDLayersInternal\", \"ReadOnePNGImage\", \"ReadMIFFImage\", \"ReadMATImage\", \"ReadJP2Image\", \"ReadOneMNGImage\", \"SFWScan\", \"formatIPTC\" und \"load_level\". Durch fehlende Speicherinitialisierungen und Validierungen k\u00f6nnen durch pr\u00e4parierte Bilddateien diverse Speicherlecks ausgenutzt werden. Ein entfernter, anonymer Angreifer kann so Zugriff auf eventuell sensitive Informationen erlangen und einen Denial of Service Zustand herbeif\u00fchren. Zur erfolgreichen Ausnutzung dieser Schwachstelle muss der Angreifer den Benutzer dazu bringen, eine modifizierte Bilddatei hochzuladen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363",
"T010617"
]
},
"release_date": "2017-08-22T22:00:00.000+00:00",
"title": "CVE-2017-13143"
},
{
"cve": "CVE-2017-13144",
"notes": [
{
"category": "description",
"text": "In ImageMagick existieren mehrere Schwachstellen. Die Schwachstellen existieren in den Funktionen \"WritePCXImage\", \"WriteOneJNGImage\", \"WritePDFImage\", \"ReadPSDLayersInternal\", \"ReadOnePNGImage\", \"ReadMIFFImage\", \"ReadMATImage\", \"ReadJP2Image\", \"ReadOneMNGImage\", \"SFWScan\", \"formatIPTC\" und \"load_level\". Durch fehlende Speicherinitialisierungen und Validierungen k\u00f6nnen durch pr\u00e4parierte Bilddateien diverse Speicherlecks ausgenutzt werden. Ein entfernter, anonymer Angreifer kann so Zugriff auf eventuell sensitive Informationen erlangen und einen Denial of Service Zustand herbeif\u00fchren. Zur erfolgreichen Ausnutzung dieser Schwachstelle muss der Angreifer den Benutzer dazu bringen, eine modifizierte Bilddatei hochzuladen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363",
"T010617"
]
},
"release_date": "2017-08-22T22:00:00.000+00:00",
"title": "CVE-2017-13144"
},
{
"cve": "CVE-2017-13145",
"notes": [
{
"category": "description",
"text": "In ImageMagick existieren mehrere Schwachstellen. Die Schwachstellen existieren in den Funktionen \"WritePCXImage\", \"WriteOneJNGImage\", \"WritePDFImage\", \"ReadPSDLayersInternal\", \"ReadOnePNGImage\", \"ReadMIFFImage\", \"ReadMATImage\", \"ReadJP2Image\", \"ReadOneMNGImage\", \"SFWScan\", \"formatIPTC\" und \"load_level\". Durch fehlende Speicherinitialisierungen und Validierungen k\u00f6nnen durch pr\u00e4parierte Bilddateien diverse Speicherlecks ausgenutzt werden. Ein entfernter, anonymer Angreifer kann so Zugriff auf eventuell sensitive Informationen erlangen und einen Denial of Service Zustand herbeif\u00fchren. Zur erfolgreichen Ausnutzung dieser Schwachstelle muss der Angreifer den Benutzer dazu bringen, eine modifizierte Bilddatei hochzuladen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363",
"T010617"
]
},
"release_date": "2017-08-22T22:00:00.000+00:00",
"title": "CVE-2017-13145"
},
{
"cve": "CVE-2017-13146",
"notes": [
{
"category": "description",
"text": "In ImageMagick existieren mehrere Schwachstellen. Die Schwachstellen existieren in den Funktionen \"WritePCXImage\", \"WriteOneJNGImage\", \"WritePDFImage\", \"ReadPSDLayersInternal\", \"ReadOnePNGImage\", \"ReadMIFFImage\", \"ReadMATImage\", \"ReadJP2Image\", \"ReadOneMNGImage\", \"SFWScan\", \"formatIPTC\" und \"load_level\". Durch fehlende Speicherinitialisierungen und Validierungen k\u00f6nnen durch pr\u00e4parierte Bilddateien diverse Speicherlecks ausgenutzt werden. Ein entfernter, anonymer Angreifer kann so Zugriff auf eventuell sensitive Informationen erlangen und einen Denial of Service Zustand herbeif\u00fchren. Zur erfolgreichen Ausnutzung dieser Schwachstelle muss der Angreifer den Benutzer dazu bringen, eine modifizierte Bilddatei hochzuladen."
}
],
"product_status": {
"known_affected": [
"2951",
"T002207",
"T000126",
"398363",
"T010617"
]
},
"release_date": "2017-08-22T22:00:00.000+00:00",
"title": "CVE-2017-13146"
}
]
}
suse-su-2017:3168-1
Vulnerability from csaf_suse
Published
2017-11-30 22:00
Modified
2017-11-30 22:00
Summary
Security update for ImageMagick
Notes
Title of the patch
Security update for ImageMagick
Description of the patch
This update for ImageMagick fixes several issues.
These security issues were fixed:
- CVE-2017-11534: Processing a crafted file in convert could have lead to a
Memory Leak in the lite_font_map() function in coders/wmf.c (bsc#1050135).
- CVE-2017-13133: The load_level function in coders/xcf.c lacked offset
validation, which allowed attackers to cause a denial of service (load_tile
memory exhaustion) via a crafted file (bsc#1055219).
- CVE-2017-13139: The ReadOneMNGImage function in coders/png.c had an
out-of-bounds read with the MNG CLIP chunk (bsc#1055430).
- CVE-2017-15033: Fixed a memory leak in ReadYUVImage in coders/yuv.c
(bsc#1061873).
Patchnames
sdksp4-ImageMagick-13356,slessp4-ImageMagick-13356
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for ImageMagick",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for ImageMagick fixes several issues.\n\nThese security issues were fixed:\n\n- CVE-2017-11534: Processing a crafted file in convert could have lead to a\n Memory Leak in the lite_font_map() function in coders/wmf.c (bsc#1050135).\n- CVE-2017-13133: The load_level function in coders/xcf.c lacked offset\n validation, which allowed attackers to cause a denial of service (load_tile\n memory exhaustion) via a crafted file (bsc#1055219).\n- CVE-2017-13139: The ReadOneMNGImage function in coders/png.c had an\n out-of-bounds read with the MNG CLIP chunk (bsc#1055430).\n- CVE-2017-15033: Fixed a memory leak in ReadYUVImage in coders/yuv.c\n (bsc#1061873).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "sdksp4-ImageMagick-13356,slessp4-ImageMagick-13356",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2017_3168-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2017:3168-1",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20173168-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2017:3168-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2017-November/003460.html"
},
{
"category": "self",
"summary": "SUSE Bug 1050135",
"url": "https://bugzilla.suse.com/1050135"
},
{
"category": "self",
"summary": "SUSE Bug 1055219",
"url": "https://bugzilla.suse.com/1055219"
},
{
"category": "self",
"summary": "SUSE Bug 1055430",
"url": "https://bugzilla.suse.com/1055430"
},
{
"category": "self",
"summary": "SUSE Bug 1061873",
"url": "https://bugzilla.suse.com/1061873"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-11534 page",
"url": "https://www.suse.com/security/cve/CVE-2017-11534/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-13133 page",
"url": "https://www.suse.com/security/cve/CVE-2017-13133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-13139 page",
"url": "https://www.suse.com/security/cve/CVE-2017-13139/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-15033 page",
"url": "https://www.suse.com/security/cve/CVE-2017-15033/"
}
],
"title": "Security update for ImageMagick",
"tracking": {
"current_release_date": "2017-11-30T22:00:14Z",
"generator": {
"date": "2017-11-30T22:00:14Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2017:3168-1",
"initial_release_date": "2017-11-30T22:00:14Z",
"revision_history": [
{
"date": "2017-11-30T22:00:14Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "ImageMagick-6.4.3.6-7.78.8.1.i586",
"product": {
"name": "ImageMagick-6.4.3.6-7.78.8.1.i586",
"product_id": "ImageMagick-6.4.3.6-7.78.8.1.i586"
}
},
{
"category": "product_version",
"name": "ImageMagick-devel-6.4.3.6-7.78.8.1.i586",
"product": {
"name": "ImageMagick-devel-6.4.3.6-7.78.8.1.i586",
"product_id": "ImageMagick-devel-6.4.3.6-7.78.8.1.i586"
}
},
{
"category": "product_version",
"name": "libMagick++-devel-6.4.3.6-7.78.8.1.i586",
"product": {
"name": "libMagick++-devel-6.4.3.6-7.78.8.1.i586",
"product_id": "libMagick++-devel-6.4.3.6-7.78.8.1.i586"
}
},
{
"category": "product_version",
"name": "libMagick++1-6.4.3.6-7.78.8.1.i586",
"product": {
"name": "libMagick++1-6.4.3.6-7.78.8.1.i586",
"product_id": "libMagick++1-6.4.3.6-7.78.8.1.i586"
}
},
{
"category": "product_version",
"name": "libMagickWand1-6.4.3.6-7.78.8.1.i586",
"product": {
"name": "libMagickWand1-6.4.3.6-7.78.8.1.i586",
"product_id": "libMagickWand1-6.4.3.6-7.78.8.1.i586"
}
},
{
"category": "product_version",
"name": "perl-PerlMagick-6.4.3.6-7.78.8.1.i586",
"product": {
"name": "perl-PerlMagick-6.4.3.6-7.78.8.1.i586",
"product_id": "perl-PerlMagick-6.4.3.6-7.78.8.1.i586"
}
},
{
"category": "product_version",
"name": "libMagickCore1-6.4.3.6-7.78.8.1.i586",
"product": {
"name": "libMagickCore1-6.4.3.6-7.78.8.1.i586",
"product_id": "libMagickCore1-6.4.3.6-7.78.8.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "ImageMagick-6.4.3.6-7.78.8.1.ia64",
"product": {
"name": "ImageMagick-6.4.3.6-7.78.8.1.ia64",
"product_id": "ImageMagick-6.4.3.6-7.78.8.1.ia64"
}
},
{
"category": "product_version",
"name": "ImageMagick-devel-6.4.3.6-7.78.8.1.ia64",
"product": {
"name": "ImageMagick-devel-6.4.3.6-7.78.8.1.ia64",
"product_id": "ImageMagick-devel-6.4.3.6-7.78.8.1.ia64"
}
},
{
"category": "product_version",
"name": "libMagick++-devel-6.4.3.6-7.78.8.1.ia64",
"product": {
"name": "libMagick++-devel-6.4.3.6-7.78.8.1.ia64",
"product_id": "libMagick++-devel-6.4.3.6-7.78.8.1.ia64"
}
},
{
"category": "product_version",
"name": "libMagick++1-6.4.3.6-7.78.8.1.ia64",
"product": {
"name": "libMagick++1-6.4.3.6-7.78.8.1.ia64",
"product_id": "libMagick++1-6.4.3.6-7.78.8.1.ia64"
}
},
{
"category": "product_version",
"name": "libMagickWand1-6.4.3.6-7.78.8.1.ia64",
"product": {
"name": "libMagickWand1-6.4.3.6-7.78.8.1.ia64",
"product_id": "libMagickWand1-6.4.3.6-7.78.8.1.ia64"
}
},
{
"category": "product_version",
"name": "perl-PerlMagick-6.4.3.6-7.78.8.1.ia64",
"product": {
"name": "perl-PerlMagick-6.4.3.6-7.78.8.1.ia64",
"product_id": "perl-PerlMagick-6.4.3.6-7.78.8.1.ia64"
}
},
{
"category": "product_version",
"name": "libMagickCore1-6.4.3.6-7.78.8.1.ia64",
"product": {
"name": "libMagickCore1-6.4.3.6-7.78.8.1.ia64",
"product_id": "libMagickCore1-6.4.3.6-7.78.8.1.ia64"
}
}
],
"category": "architecture",
"name": "ia64"
},
{
"branches": [
{
"category": "product_version",
"name": "ImageMagick-6.4.3.6-7.78.8.1.ppc64",
"product": {
"name": "ImageMagick-6.4.3.6-7.78.8.1.ppc64",
"product_id": "ImageMagick-6.4.3.6-7.78.8.1.ppc64"
}
},
{
"category": "product_version",
"name": "ImageMagick-devel-6.4.3.6-7.78.8.1.ppc64",
"product": {
"name": "ImageMagick-devel-6.4.3.6-7.78.8.1.ppc64",
"product_id": "ImageMagick-devel-6.4.3.6-7.78.8.1.ppc64"
}
},
{
"category": "product_version",
"name": "libMagick++-devel-6.4.3.6-7.78.8.1.ppc64",
"product": {
"name": "libMagick++-devel-6.4.3.6-7.78.8.1.ppc64",
"product_id": "libMagick++-devel-6.4.3.6-7.78.8.1.ppc64"
}
},
{
"category": "product_version",
"name": "libMagick++1-6.4.3.6-7.78.8.1.ppc64",
"product": {
"name": "libMagick++1-6.4.3.6-7.78.8.1.ppc64",
"product_id": "libMagick++1-6.4.3.6-7.78.8.1.ppc64"
}
},
{
"category": "product_version",
"name": "libMagickWand1-6.4.3.6-7.78.8.1.ppc64",
"product": {
"name": "libMagickWand1-6.4.3.6-7.78.8.1.ppc64",
"product_id": "libMagickWand1-6.4.3.6-7.78.8.1.ppc64"
}
},
{
"category": "product_version",
"name": "libMagickWand1-32bit-6.4.3.6-7.78.8.1.ppc64",
"product": {
"name": "libMagickWand1-32bit-6.4.3.6-7.78.8.1.ppc64",
"product_id": "libMagickWand1-32bit-6.4.3.6-7.78.8.1.ppc64"
}
},
{
"category": "product_version",
"name": "perl-PerlMagick-6.4.3.6-7.78.8.1.ppc64",
"product": {
"name": "perl-PerlMagick-6.4.3.6-7.78.8.1.ppc64",
"product_id": "perl-PerlMagick-6.4.3.6-7.78.8.1.ppc64"
}
},
{
"category": "product_version",
"name": "libMagickCore1-6.4.3.6-7.78.8.1.ppc64",
"product": {
"name": "libMagickCore1-6.4.3.6-7.78.8.1.ppc64",
"product_id": "libMagickCore1-6.4.3.6-7.78.8.1.ppc64"
}
},
{
"category": "product_version",
"name": "libMagickCore1-32bit-6.4.3.6-7.78.8.1.ppc64",
"product": {
"name": "libMagickCore1-32bit-6.4.3.6-7.78.8.1.ppc64",
"product_id": "libMagickCore1-32bit-6.4.3.6-7.78.8.1.ppc64"
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "ImageMagick-6.4.3.6-7.78.8.1.s390x",
"product": {
"name": "ImageMagick-6.4.3.6-7.78.8.1.s390x",
"product_id": "ImageMagick-6.4.3.6-7.78.8.1.s390x"
}
},
{
"category": "product_version",
"name": "ImageMagick-devel-6.4.3.6-7.78.8.1.s390x",
"product": {
"name": "ImageMagick-devel-6.4.3.6-7.78.8.1.s390x",
"product_id": "ImageMagick-devel-6.4.3.6-7.78.8.1.s390x"
}
},
{
"category": "product_version",
"name": "libMagick++-devel-6.4.3.6-7.78.8.1.s390x",
"product": {
"name": "libMagick++-devel-6.4.3.6-7.78.8.1.s390x",
"product_id": "libMagick++-devel-6.4.3.6-7.78.8.1.s390x"
}
},
{
"category": "product_version",
"name": "libMagick++1-6.4.3.6-7.78.8.1.s390x",
"product": {
"name": "libMagick++1-6.4.3.6-7.78.8.1.s390x",
"product_id": "libMagick++1-6.4.3.6-7.78.8.1.s390x"
}
},
{
"category": "product_version",
"name": "libMagickWand1-6.4.3.6-7.78.8.1.s390x",
"product": {
"name": "libMagickWand1-6.4.3.6-7.78.8.1.s390x",
"product_id": "libMagickWand1-6.4.3.6-7.78.8.1.s390x"
}
},
{
"category": "product_version",
"name": "libMagickWand1-32bit-6.4.3.6-7.78.8.1.s390x",
"product": {
"name": "libMagickWand1-32bit-6.4.3.6-7.78.8.1.s390x",
"product_id": "libMagickWand1-32bit-6.4.3.6-7.78.8.1.s390x"
}
},
{
"category": "product_version",
"name": "perl-PerlMagick-6.4.3.6-7.78.8.1.s390x",
"product": {
"name": "perl-PerlMagick-6.4.3.6-7.78.8.1.s390x",
"product_id": "perl-PerlMagick-6.4.3.6-7.78.8.1.s390x"
}
},
{
"category": "product_version",
"name": "libMagickCore1-6.4.3.6-7.78.8.1.s390x",
"product": {
"name": "libMagickCore1-6.4.3.6-7.78.8.1.s390x",
"product_id": "libMagickCore1-6.4.3.6-7.78.8.1.s390x"
}
},
{
"category": "product_version",
"name": "libMagickCore1-32bit-6.4.3.6-7.78.8.1.s390x",
"product": {
"name": "libMagickCore1-32bit-6.4.3.6-7.78.8.1.s390x",
"product_id": "libMagickCore1-32bit-6.4.3.6-7.78.8.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "ImageMagick-6.4.3.6-7.78.8.1.x86_64",
"product": {
"name": "ImageMagick-6.4.3.6-7.78.8.1.x86_64",
"product_id": "ImageMagick-6.4.3.6-7.78.8.1.x86_64"
}
},
{
"category": "product_version",
"name": "ImageMagick-devel-6.4.3.6-7.78.8.1.x86_64",
"product": {
"name": "ImageMagick-devel-6.4.3.6-7.78.8.1.x86_64",
"product_id": "ImageMagick-devel-6.4.3.6-7.78.8.1.x86_64"
}
},
{
"category": "product_version",
"name": "libMagick++-devel-6.4.3.6-7.78.8.1.x86_64",
"product": {
"name": "libMagick++-devel-6.4.3.6-7.78.8.1.x86_64",
"product_id": "libMagick++-devel-6.4.3.6-7.78.8.1.x86_64"
}
},
{
"category": "product_version",
"name": "libMagick++1-6.4.3.6-7.78.8.1.x86_64",
"product": {
"name": "libMagick++1-6.4.3.6-7.78.8.1.x86_64",
"product_id": "libMagick++1-6.4.3.6-7.78.8.1.x86_64"
}
},
{
"category": "product_version",
"name": "libMagickWand1-6.4.3.6-7.78.8.1.x86_64",
"product": {
"name": "libMagickWand1-6.4.3.6-7.78.8.1.x86_64",
"product_id": "libMagickWand1-6.4.3.6-7.78.8.1.x86_64"
}
},
{
"category": "product_version",
"name": "libMagickWand1-32bit-6.4.3.6-7.78.8.1.x86_64",
"product": {
"name": "libMagickWand1-32bit-6.4.3.6-7.78.8.1.x86_64",
"product_id": "libMagickWand1-32bit-6.4.3.6-7.78.8.1.x86_64"
}
},
{
"category": "product_version",
"name": "perl-PerlMagick-6.4.3.6-7.78.8.1.x86_64",
"product": {
"name": "perl-PerlMagick-6.4.3.6-7.78.8.1.x86_64",
"product_id": "perl-PerlMagick-6.4.3.6-7.78.8.1.x86_64"
}
},
{
"category": "product_version",
"name": "libMagickCore1-6.4.3.6-7.78.8.1.x86_64",
"product": {
"name": "libMagickCore1-6.4.3.6-7.78.8.1.x86_64",
"product_id": "libMagickCore1-6.4.3.6-7.78.8.1.x86_64"
}
},
{
"category": "product_version",
"name": "libMagickCore1-32bit-6.4.3.6-7.78.8.1.x86_64",
"product": {
"name": "libMagickCore1-32bit-6.4.3.6-7.78.8.1.x86_64",
"product_id": "libMagickCore1-32bit-6.4.3.6-7.78.8.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Software Development Kit 11 SP4",
"product": {
"name": "SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_identification_helper": {
"cpe": "cpe:/a:suse:sle-sdk:11:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP4",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP4",
"product_id": "SUSE Linux Enterprise Server 11 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_sles:11:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 11 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 11 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:11:sp4"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-6.4.3.6-7.78.8.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.i586"
},
"product_reference": "ImageMagick-6.4.3.6-7.78.8.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-6.4.3.6-7.78.8.1.ia64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.ia64"
},
"product_reference": "ImageMagick-6.4.3.6-7.78.8.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-6.4.3.6-7.78.8.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.ppc64"
},
"product_reference": "ImageMagick-6.4.3.6-7.78.8.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-6.4.3.6-7.78.8.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.s390x"
},
"product_reference": "ImageMagick-6.4.3.6-7.78.8.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-6.4.3.6-7.78.8.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.x86_64"
},
"product_reference": "ImageMagick-6.4.3.6-7.78.8.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-devel-6.4.3.6-7.78.8.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.i586"
},
"product_reference": "ImageMagick-devel-6.4.3.6-7.78.8.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-devel-6.4.3.6-7.78.8.1.ia64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.ia64"
},
"product_reference": "ImageMagick-devel-6.4.3.6-7.78.8.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-devel-6.4.3.6-7.78.8.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.ppc64"
},
"product_reference": "ImageMagick-devel-6.4.3.6-7.78.8.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-devel-6.4.3.6-7.78.8.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.s390x"
},
"product_reference": "ImageMagick-devel-6.4.3.6-7.78.8.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-devel-6.4.3.6-7.78.8.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.x86_64"
},
"product_reference": "ImageMagick-devel-6.4.3.6-7.78.8.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-devel-6.4.3.6-7.78.8.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.i586"
},
"product_reference": "libMagick++-devel-6.4.3.6-7.78.8.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-devel-6.4.3.6-7.78.8.1.ia64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.ia64"
},
"product_reference": "libMagick++-devel-6.4.3.6-7.78.8.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-devel-6.4.3.6-7.78.8.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.ppc64"
},
"product_reference": "libMagick++-devel-6.4.3.6-7.78.8.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-devel-6.4.3.6-7.78.8.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.s390x"
},
"product_reference": "libMagick++-devel-6.4.3.6-7.78.8.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-devel-6.4.3.6-7.78.8.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.x86_64"
},
"product_reference": "libMagick++-devel-6.4.3.6-7.78.8.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++1-6.4.3.6-7.78.8.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.i586"
},
"product_reference": "libMagick++1-6.4.3.6-7.78.8.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++1-6.4.3.6-7.78.8.1.ia64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.ia64"
},
"product_reference": "libMagick++1-6.4.3.6-7.78.8.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++1-6.4.3.6-7.78.8.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.ppc64"
},
"product_reference": "libMagick++1-6.4.3.6-7.78.8.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++1-6.4.3.6-7.78.8.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.s390x"
},
"product_reference": "libMagick++1-6.4.3.6-7.78.8.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++1-6.4.3.6-7.78.8.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.x86_64"
},
"product_reference": "libMagick++1-6.4.3.6-7.78.8.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand1-6.4.3.6-7.78.8.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.i586"
},
"product_reference": "libMagickWand1-6.4.3.6-7.78.8.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand1-6.4.3.6-7.78.8.1.ia64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.ia64"
},
"product_reference": "libMagickWand1-6.4.3.6-7.78.8.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand1-6.4.3.6-7.78.8.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.ppc64"
},
"product_reference": "libMagickWand1-6.4.3.6-7.78.8.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand1-6.4.3.6-7.78.8.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.s390x"
},
"product_reference": "libMagickWand1-6.4.3.6-7.78.8.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand1-6.4.3.6-7.78.8.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.x86_64"
},
"product_reference": "libMagickWand1-6.4.3.6-7.78.8.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand1-32bit-6.4.3.6-7.78.8.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.ppc64"
},
"product_reference": "libMagickWand1-32bit-6.4.3.6-7.78.8.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand1-32bit-6.4.3.6-7.78.8.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.s390x"
},
"product_reference": "libMagickWand1-32bit-6.4.3.6-7.78.8.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand1-32bit-6.4.3.6-7.78.8.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.x86_64"
},
"product_reference": "libMagickWand1-32bit-6.4.3.6-7.78.8.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-PerlMagick-6.4.3.6-7.78.8.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.i586"
},
"product_reference": "perl-PerlMagick-6.4.3.6-7.78.8.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-PerlMagick-6.4.3.6-7.78.8.1.ia64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.ia64"
},
"product_reference": "perl-PerlMagick-6.4.3.6-7.78.8.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-PerlMagick-6.4.3.6-7.78.8.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.ppc64"
},
"product_reference": "perl-PerlMagick-6.4.3.6-7.78.8.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-PerlMagick-6.4.3.6-7.78.8.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.s390x"
},
"product_reference": "perl-PerlMagick-6.4.3.6-7.78.8.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-PerlMagick-6.4.3.6-7.78.8.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.x86_64"
},
"product_reference": "perl-PerlMagick-6.4.3.6-7.78.8.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore1-6.4.3.6-7.78.8.1.i586 as component of SUSE Linux Enterprise Server 11 SP4",
"product_id": "SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.i586"
},
"product_reference": "libMagickCore1-6.4.3.6-7.78.8.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore1-6.4.3.6-7.78.8.1.ia64 as component of SUSE Linux Enterprise Server 11 SP4",
"product_id": "SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ia64"
},
"product_reference": "libMagickCore1-6.4.3.6-7.78.8.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore1-6.4.3.6-7.78.8.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4",
"product_id": "SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ppc64"
},
"product_reference": "libMagickCore1-6.4.3.6-7.78.8.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore1-6.4.3.6-7.78.8.1.s390x as component of SUSE Linux Enterprise Server 11 SP4",
"product_id": "SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.s390x"
},
"product_reference": "libMagickCore1-6.4.3.6-7.78.8.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore1-6.4.3.6-7.78.8.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4",
"product_id": "SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.x86_64"
},
"product_reference": "libMagickCore1-6.4.3.6-7.78.8.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore1-32bit-6.4.3.6-7.78.8.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4",
"product_id": "SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.ppc64"
},
"product_reference": "libMagickCore1-32bit-6.4.3.6-7.78.8.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore1-32bit-6.4.3.6-7.78.8.1.s390x as component of SUSE Linux Enterprise Server 11 SP4",
"product_id": "SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.s390x"
},
"product_reference": "libMagickCore1-32bit-6.4.3.6-7.78.8.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore1-32bit-6.4.3.6-7.78.8.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4",
"product_id": "SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.x86_64"
},
"product_reference": "libMagickCore1-32bit-6.4.3.6-7.78.8.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore1-6.4.3.6-7.78.8.1.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.i586"
},
"product_reference": "libMagickCore1-6.4.3.6-7.78.8.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore1-6.4.3.6-7.78.8.1.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ia64"
},
"product_reference": "libMagickCore1-6.4.3.6-7.78.8.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore1-6.4.3.6-7.78.8.1.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ppc64"
},
"product_reference": "libMagickCore1-6.4.3.6-7.78.8.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore1-6.4.3.6-7.78.8.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.s390x"
},
"product_reference": "libMagickCore1-6.4.3.6-7.78.8.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore1-6.4.3.6-7.78.8.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.x86_64"
},
"product_reference": "libMagickCore1-6.4.3.6-7.78.8.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore1-32bit-6.4.3.6-7.78.8.1.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.ppc64"
},
"product_reference": "libMagickCore1-32bit-6.4.3.6-7.78.8.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore1-32bit-6.4.3.6-7.78.8.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.s390x"
},
"product_reference": "libMagickCore1-32bit-6.4.3.6-7.78.8.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore1-32bit-6.4.3.6-7.78.8.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.x86_64"
},
"product_reference": "libMagickCore1-32bit-6.4.3.6-7.78.8.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-11534",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-11534"
}
],
"notes": [
{
"category": "general",
"text": "When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Memory Leak in the lite_font_map() function in coders/wmf.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-11534",
"url": "https://www.suse.com/security/cve/CVE-2017-11534"
},
{
"category": "external",
"summary": "SUSE Bug 1050135 for CVE-2017-11534",
"url": "https://bugzilla.suse.com/1050135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-11-30T22:00:14Z",
"details": "moderate"
}
],
"title": "CVE-2017-11534"
},
{
"cve": "CVE-2017-13133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-13133"
}
],
"notes": [
{
"category": "general",
"text": "In ImageMagick 7.0.6-8, the load_level function in coders/xcf.c lacks offset validation, which allows attackers to cause a denial of service (load_tile memory exhaustion) via a crafted file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-13133",
"url": "https://www.suse.com/security/cve/CVE-2017-13133"
},
{
"category": "external",
"summary": "SUSE Bug 1055219 for CVE-2017-13133",
"url": "https://bugzilla.suse.com/1055219"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-11-30T22:00:14Z",
"details": "important"
}
],
"title": "CVE-2017-13133"
},
{
"cve": "CVE-2017-13139",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-13139"
}
],
"notes": [
{
"category": "general",
"text": "In ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1, the ReadOneMNGImage function in coders/png.c has an out-of-bounds read with the MNG CLIP chunk.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-13139",
"url": "https://www.suse.com/security/cve/CVE-2017-13139"
},
{
"category": "external",
"summary": "SUSE Bug 1055430 for CVE-2017-13139",
"url": "https://bugzilla.suse.com/1055430"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-11-30T22:00:14Z",
"details": "important"
}
],
"title": "CVE-2017-13139"
},
{
"cve": "CVE-2017-15033",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-15033"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick version 7.0.7-2 contains a memory leak in ReadYUVImage in coders/yuv.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-15033",
"url": "https://www.suse.com/security/cve/CVE-2017-15033"
},
{
"category": "external",
"summary": "SUSE Bug 1061873 for CVE-2017-15033",
"url": "https://bugzilla.suse.com/1061873"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.78.8.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.78.8.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-11-30T22:00:14Z",
"details": "moderate"
}
],
"title": "CVE-2017-15033"
}
]
}
suse-su-2017:3056-1
Vulnerability from csaf_suse
Published
2017-11-23 16:15
Modified
2017-11-23 16:15
Summary
Security update for GraphicsMagick
Notes
Title of the patch
Security update for GraphicsMagick
Description of the patch
This update for GraphicsMagick fixes the following issues:
- CVE-2017-15033: A denial of service attack (memory leak) in ReadYUVImage in coders/yuv.c was fixed (bsc#1061873)
- CVE-2017-13063: A heap-based buffer overflow vulnerability in the function GetStyleTokens in coders/svg.c was fixed (bsc#1055050)
- CVE-2017-13064: A heap-based buffer overflow vulnerability in the function GetStyleTokens in coders/svg.c was fixed (bsc#1055042)
- CVE-2017-12936: The ReadWMFImage function in coders/wmf.c in GraphicsMagick had a use-after-free issue for data associated with exception reporting. (bsc#1054598)
- CVE-2017-13139: The ReadOneMNGImage function in coders/png.c had an out-of-bounds read with the MNG CLIP chunk. (bsc#1055430)
- CVE-2017-12937: The ReadSUNImage function in coders/sun.c in GraphicsMagick had a colormap heap-based buffer over-read. (bsc#1054596)
- CVE-2017-11534: A Memory Leak in the lite_font_map() function in coders/wmf.c was fixed (bsc#1050135)
Patchnames
sdksp4-GraphicsMagick-13347,slestso13-GraphicsMagick-13347
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for GraphicsMagick",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for GraphicsMagick fixes the following issues:\n\n- CVE-2017-15033: A denial of service attack (memory leak) in ReadYUVImage in coders/yuv.c was fixed (bsc#1061873)\n- CVE-2017-13063: A heap-based buffer overflow vulnerability in the function GetStyleTokens in coders/svg.c was fixed (bsc#1055050)\n- CVE-2017-13064: A heap-based buffer overflow vulnerability in the function GetStyleTokens in coders/svg.c was fixed (bsc#1055042)\n- CVE-2017-12936: The ReadWMFImage function in coders/wmf.c in GraphicsMagick had a use-after-free issue for data associated with exception reporting. (bsc#1054598)\n- CVE-2017-13139: The ReadOneMNGImage function in coders/png.c had an out-of-bounds read with the MNG CLIP chunk. (bsc#1055430)\n- CVE-2017-12937: The ReadSUNImage function in coders/sun.c in GraphicsMagick had a colormap heap-based buffer over-read. (bsc#1054596)\n- CVE-2017-11534: A Memory Leak in the lite_font_map() function in coders/wmf.c was fixed (bsc#1050135)\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "sdksp4-GraphicsMagick-13347,slestso13-GraphicsMagick-13347",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2017_3056-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2017:3056-1",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20173056-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2017:3056-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2017-November/003404.html"
},
{
"category": "self",
"summary": "SUSE Bug 1050135",
"url": "https://bugzilla.suse.com/1050135"
},
{
"category": "self",
"summary": "SUSE Bug 1054596",
"url": "https://bugzilla.suse.com/1054596"
},
{
"category": "self",
"summary": "SUSE Bug 1054598",
"url": "https://bugzilla.suse.com/1054598"
},
{
"category": "self",
"summary": "SUSE Bug 1055042",
"url": "https://bugzilla.suse.com/1055042"
},
{
"category": "self",
"summary": "SUSE Bug 1055050",
"url": "https://bugzilla.suse.com/1055050"
},
{
"category": "self",
"summary": "SUSE Bug 1055430",
"url": "https://bugzilla.suse.com/1055430"
},
{
"category": "self",
"summary": "SUSE Bug 1061873",
"url": "https://bugzilla.suse.com/1061873"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-11534 page",
"url": "https://www.suse.com/security/cve/CVE-2017-11534/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-12936 page",
"url": "https://www.suse.com/security/cve/CVE-2017-12936/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-12937 page",
"url": "https://www.suse.com/security/cve/CVE-2017-12937/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-13063 page",
"url": "https://www.suse.com/security/cve/CVE-2017-13063/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-13064 page",
"url": "https://www.suse.com/security/cve/CVE-2017-13064/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-13139 page",
"url": "https://www.suse.com/security/cve/CVE-2017-13139/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-15033 page",
"url": "https://www.suse.com/security/cve/CVE-2017-15033/"
}
],
"title": "Security update for GraphicsMagick",
"tracking": {
"current_release_date": "2017-11-23T16:15:37Z",
"generator": {
"date": "2017-11-23T16:15:37Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2017:3056-1",
"initial_release_date": "2017-11-23T16:15:37Z",
"revision_history": [
{
"date": "2017-11-23T16:15:37Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "GraphicsMagick-1.2.5-4.78.16.1.i586",
"product": {
"name": "GraphicsMagick-1.2.5-4.78.16.1.i586",
"product_id": "GraphicsMagick-1.2.5-4.78.16.1.i586"
}
},
{
"category": "product_version",
"name": "libGraphicsMagick2-1.2.5-4.78.16.1.i586",
"product": {
"name": "libGraphicsMagick2-1.2.5-4.78.16.1.i586",
"product_id": "libGraphicsMagick2-1.2.5-4.78.16.1.i586"
}
},
{
"category": "product_version",
"name": "perl-GraphicsMagick-1.2.5-4.78.16.1.i586",
"product": {
"name": "perl-GraphicsMagick-1.2.5-4.78.16.1.i586",
"product_id": "perl-GraphicsMagick-1.2.5-4.78.16.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "GraphicsMagick-1.2.5-4.78.16.1.ia64",
"product": {
"name": "GraphicsMagick-1.2.5-4.78.16.1.ia64",
"product_id": "GraphicsMagick-1.2.5-4.78.16.1.ia64"
}
},
{
"category": "product_version",
"name": "libGraphicsMagick2-1.2.5-4.78.16.1.ia64",
"product": {
"name": "libGraphicsMagick2-1.2.5-4.78.16.1.ia64",
"product_id": "libGraphicsMagick2-1.2.5-4.78.16.1.ia64"
}
},
{
"category": "product_version",
"name": "perl-GraphicsMagick-1.2.5-4.78.16.1.ia64",
"product": {
"name": "perl-GraphicsMagick-1.2.5-4.78.16.1.ia64",
"product_id": "perl-GraphicsMagick-1.2.5-4.78.16.1.ia64"
}
}
],
"category": "architecture",
"name": "ia64"
},
{
"branches": [
{
"category": "product_version",
"name": "GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"product": {
"name": "GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"product_id": "GraphicsMagick-1.2.5-4.78.16.1.ppc64"
}
},
{
"category": "product_version",
"name": "libGraphicsMagick2-1.2.5-4.78.16.1.ppc64",
"product": {
"name": "libGraphicsMagick2-1.2.5-4.78.16.1.ppc64",
"product_id": "libGraphicsMagick2-1.2.5-4.78.16.1.ppc64"
}
},
{
"category": "product_version",
"name": "perl-GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"product": {
"name": "perl-GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"product_id": "perl-GraphicsMagick-1.2.5-4.78.16.1.ppc64"
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "GraphicsMagick-1.2.5-4.78.16.1.s390x",
"product": {
"name": "GraphicsMagick-1.2.5-4.78.16.1.s390x",
"product_id": "GraphicsMagick-1.2.5-4.78.16.1.s390x"
}
},
{
"category": "product_version",
"name": "libGraphicsMagick2-1.2.5-4.78.16.1.s390x",
"product": {
"name": "libGraphicsMagick2-1.2.5-4.78.16.1.s390x",
"product_id": "libGraphicsMagick2-1.2.5-4.78.16.1.s390x"
}
},
{
"category": "product_version",
"name": "perl-GraphicsMagick-1.2.5-4.78.16.1.s390x",
"product": {
"name": "perl-GraphicsMagick-1.2.5-4.78.16.1.s390x",
"product_id": "perl-GraphicsMagick-1.2.5-4.78.16.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"product": {
"name": "GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"product_id": "GraphicsMagick-1.2.5-4.78.16.1.x86_64"
}
},
{
"category": "product_version",
"name": "libGraphicsMagick2-1.2.5-4.78.16.1.x86_64",
"product": {
"name": "libGraphicsMagick2-1.2.5-4.78.16.1.x86_64",
"product_id": "libGraphicsMagick2-1.2.5-4.78.16.1.x86_64"
}
},
{
"category": "product_version",
"name": "perl-GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"product": {
"name": "perl-GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"product_id": "perl-GraphicsMagick-1.2.5-4.78.16.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Software Development Kit 11 SP4",
"product": {
"name": "SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_identification_helper": {
"cpe": "cpe:/a:suse:sle-sdk:11:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Studio Onsite 1.3",
"product": {
"name": "SUSE Studio Onsite 1.3",
"product_id": "SUSE Studio Onsite 1.3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-studioonsite:1.3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "GraphicsMagick-1.2.5-4.78.16.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.i586"
},
"product_reference": "GraphicsMagick-1.2.5-4.78.16.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "GraphicsMagick-1.2.5-4.78.16.1.ia64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ia64"
},
"product_reference": "GraphicsMagick-1.2.5-4.78.16.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "GraphicsMagick-1.2.5-4.78.16.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ppc64"
},
"product_reference": "GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "GraphicsMagick-1.2.5-4.78.16.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.s390x"
},
"product_reference": "GraphicsMagick-1.2.5-4.78.16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "GraphicsMagick-1.2.5-4.78.16.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.x86_64"
},
"product_reference": "GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libGraphicsMagick2-1.2.5-4.78.16.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.i586"
},
"product_reference": "libGraphicsMagick2-1.2.5-4.78.16.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libGraphicsMagick2-1.2.5-4.78.16.1.ia64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ia64"
},
"product_reference": "libGraphicsMagick2-1.2.5-4.78.16.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libGraphicsMagick2-1.2.5-4.78.16.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ppc64"
},
"product_reference": "libGraphicsMagick2-1.2.5-4.78.16.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libGraphicsMagick2-1.2.5-4.78.16.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.s390x"
},
"product_reference": "libGraphicsMagick2-1.2.5-4.78.16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libGraphicsMagick2-1.2.5-4.78.16.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64"
},
"product_reference": "libGraphicsMagick2-1.2.5-4.78.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-GraphicsMagick-1.2.5-4.78.16.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.i586"
},
"product_reference": "perl-GraphicsMagick-1.2.5-4.78.16.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-GraphicsMagick-1.2.5-4.78.16.1.ia64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ia64"
},
"product_reference": "perl-GraphicsMagick-1.2.5-4.78.16.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-GraphicsMagick-1.2.5-4.78.16.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ppc64"
},
"product_reference": "perl-GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-GraphicsMagick-1.2.5-4.78.16.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.s390x"
},
"product_reference": "perl-GraphicsMagick-1.2.5-4.78.16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-GraphicsMagick-1.2.5-4.78.16.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.x86_64"
},
"product_reference": "perl-GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "GraphicsMagick-1.2.5-4.78.16.1.x86_64 as component of SUSE Studio Onsite 1.3",
"product_id": "SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.16.1.x86_64"
},
"product_reference": "GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"relates_to_product_reference": "SUSE Studio Onsite 1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libGraphicsMagick2-1.2.5-4.78.16.1.x86_64 as component of SUSE Studio Onsite 1.3",
"product_id": "SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64"
},
"product_reference": "libGraphicsMagick2-1.2.5-4.78.16.1.x86_64",
"relates_to_product_reference": "SUSE Studio Onsite 1.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-11534",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-11534"
}
],
"notes": [
{
"category": "general",
"text": "When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Memory Leak in the lite_font_map() function in coders/wmf.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-11534",
"url": "https://www.suse.com/security/cve/CVE-2017-11534"
},
{
"category": "external",
"summary": "SUSE Bug 1050135 for CVE-2017-11534",
"url": "https://bugzilla.suse.com/1050135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-11-23T16:15:37Z",
"details": "moderate"
}
],
"title": "CVE-2017-11534"
},
{
"cve": "CVE-2017-12936",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-12936"
}
],
"notes": [
{
"category": "general",
"text": "The ReadWMFImage function in coders/wmf.c in GraphicsMagick 1.3.26 has a use-after-free issue for data associated with exception reporting.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-12936",
"url": "https://www.suse.com/security/cve/CVE-2017-12936"
},
{
"category": "external",
"summary": "SUSE Bug 1054598 for CVE-2017-12936",
"url": "https://bugzilla.suse.com/1054598"
},
{
"category": "external",
"summary": "SUSE Bug 1054600 for CVE-2017-12936",
"url": "https://bugzilla.suse.com/1054600"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-11-23T16:15:37Z",
"details": "moderate"
}
],
"title": "CVE-2017-12936"
},
{
"cve": "CVE-2017-12937",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-12937"
}
],
"notes": [
{
"category": "general",
"text": "The ReadSUNImage function in coders/sun.c in GraphicsMagick 1.3.26 has a colormap heap-based buffer over-read.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-12937",
"url": "https://www.suse.com/security/cve/CVE-2017-12937"
},
{
"category": "external",
"summary": "SUSE Bug 1054596 for CVE-2017-12937",
"url": "https://bugzilla.suse.com/1054596"
},
{
"category": "external",
"summary": "SUSE Bug 1054598 for CVE-2017-12937",
"url": "https://bugzilla.suse.com/1054598"
},
{
"category": "external",
"summary": "SUSE Bug 1054600 for CVE-2017-12937",
"url": "https://bugzilla.suse.com/1054600"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-11-23T16:15:37Z",
"details": "moderate"
}
],
"title": "CVE-2017-12937"
},
{
"cve": "CVE-2017-13063",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-13063"
}
],
"notes": [
{
"category": "general",
"text": "GraphicsMagick 1.3.26 has a heap-based buffer overflow vulnerability in the function GetStyleTokens in coders/svg.c:314:12.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-13063",
"url": "https://www.suse.com/security/cve/CVE-2017-13063"
},
{
"category": "external",
"summary": "SUSE Bug 1054598 for CVE-2017-13063",
"url": "https://bugzilla.suse.com/1054598"
},
{
"category": "external",
"summary": "SUSE Bug 1054600 for CVE-2017-13063",
"url": "https://bugzilla.suse.com/1054600"
},
{
"category": "external",
"summary": "SUSE Bug 1055038 for CVE-2017-13063",
"url": "https://bugzilla.suse.com/1055038"
},
{
"category": "external",
"summary": "SUSE Bug 1055050 for CVE-2017-13063",
"url": "https://bugzilla.suse.com/1055050"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-11-23T16:15:37Z",
"details": "important"
}
],
"title": "CVE-2017-13063"
},
{
"cve": "CVE-2017-13064",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-13064"
}
],
"notes": [
{
"category": "general",
"text": "GraphicsMagick 1.3.26 has a heap-based buffer overflow vulnerability in the function GetStyleTokens in coders/svg.c:311:12.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-13064",
"url": "https://www.suse.com/security/cve/CVE-2017-13064"
},
{
"category": "external",
"summary": "SUSE Bug 1054598 for CVE-2017-13064",
"url": "https://bugzilla.suse.com/1054598"
},
{
"category": "external",
"summary": "SUSE Bug 1054600 for CVE-2017-13064",
"url": "https://bugzilla.suse.com/1054600"
},
{
"category": "external",
"summary": "SUSE Bug 1055042 for CVE-2017-13064",
"url": "https://bugzilla.suse.com/1055042"
},
{
"category": "external",
"summary": "SUSE Bug 1055050 for CVE-2017-13064",
"url": "https://bugzilla.suse.com/1055050"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-11-23T16:15:37Z",
"details": "important"
}
],
"title": "CVE-2017-13064"
},
{
"cve": "CVE-2017-13139",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-13139"
}
],
"notes": [
{
"category": "general",
"text": "In ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1, the ReadOneMNGImage function in coders/png.c has an out-of-bounds read with the MNG CLIP chunk.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-13139",
"url": "https://www.suse.com/security/cve/CVE-2017-13139"
},
{
"category": "external",
"summary": "SUSE Bug 1055430 for CVE-2017-13139",
"url": "https://bugzilla.suse.com/1055430"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-11-23T16:15:37Z",
"details": "important"
}
],
"title": "CVE-2017-13139"
},
{
"cve": "CVE-2017-15033",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-15033"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick version 7.0.7-2 contains a memory leak in ReadYUVImage in coders/yuv.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-15033",
"url": "https://www.suse.com/security/cve/CVE-2017-15033"
},
{
"category": "external",
"summary": "SUSE Bug 1061873 for CVE-2017-15033",
"url": "https://bugzilla.suse.com/1061873"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.16.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-11-23T16:15:37Z",
"details": "moderate"
}
],
"title": "CVE-2017-15033"
}
]
}
suse-su-2017:2949-1
Vulnerability from csaf_suse
Published
2017-11-08 07:49
Modified
2017-11-08 07:49
Summary
Security update for ImageMagick
Notes
Title of the patch
Security update for ImageMagick
Description of the patch
This update for ImageMagick fixes the following issues:
Security issues fixed:
* CVE-2017-15033: A denial of service attack (memory leak) was fixed in ReadYUVImage in coders/yuv.c [bsc#1061873]
* CVE-2017-11446: An infinite loop in ReadPESImage was fixed. (bsc#1049379)
* CVE-2017-12433: A memory leak in ReadPESImage in coders/pes.c was fixed. (bsc#1052545)
* CVE-2017-12428: A memory leak in ReadWMFImage in coders/wmf.c was fixed. (bsc#1052249)
* CVE-2017-12431: A use-after-free in ReadWMFImage was fixed. (bsc#1052253)
* CVE-2017-11534: A memory leak in the lite_font_map() in coders/wmf.c was fixed. (bsc#1050135)
* CVE-2017-13133: A memory exhaustion in load_level function in coders/xcf.c was fixed. (bsc#1055219)
* CVE-2017-13139: A out-of-bounds read in the ReadOneMNGImage was fixed. (bsc#1055430)
This update also reverts an incorrect fix for CVE-2016-7530 [bsc#1054924].
Patchnames
SUSE-SLE-DESKTOP-12-SP2-2017-1828,SUSE-SLE-DESKTOP-12-SP3-2017-1828,SUSE-SLE-RPI-12-SP2-2017-1828,SUSE-SLE-SDK-12-SP2-2017-1828,SUSE-SLE-SDK-12-SP3-2017-1828,SUSE-SLE-SERVER-12-SP2-2017-1828,SUSE-SLE-SERVER-12-SP3-2017-1828,SUSE-SLE-WE-12-SP2-2017-1828,SUSE-SLE-WE-12-SP3-2017-1828
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for ImageMagick",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\n\nThis update for ImageMagick fixes the following issues:\n\nSecurity issues fixed:\n\n* CVE-2017-15033: A denial of service attack (memory leak) was fixed in ReadYUVImage in coders/yuv.c [bsc#1061873]\n* CVE-2017-11446: An infinite loop in ReadPESImage was fixed. (bsc#1049379)\n* CVE-2017-12433: A memory leak in ReadPESImage in coders/pes.c was fixed. (bsc#1052545)\n* CVE-2017-12428: A memory leak in ReadWMFImage in coders/wmf.c was fixed. (bsc#1052249)\n* CVE-2017-12431: A use-after-free in ReadWMFImage was fixed. (bsc#1052253)\n* CVE-2017-11534: A memory leak in the lite_font_map() in coders/wmf.c was fixed. (bsc#1050135)\n* CVE-2017-13133: A memory exhaustion in load_level function in coders/xcf.c was fixed. (bsc#1055219)\n* CVE-2017-13139: A out-of-bounds read in the ReadOneMNGImage was fixed. (bsc#1055430)\n\nThis update also reverts an incorrect fix for CVE-2016-7530 [bsc#1054924].\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-DESKTOP-12-SP2-2017-1828,SUSE-SLE-DESKTOP-12-SP3-2017-1828,SUSE-SLE-RPI-12-SP2-2017-1828,SUSE-SLE-SDK-12-SP2-2017-1828,SUSE-SLE-SDK-12-SP3-2017-1828,SUSE-SLE-SERVER-12-SP2-2017-1828,SUSE-SLE-SERVER-12-SP3-2017-1828,SUSE-SLE-WE-12-SP2-2017-1828,SUSE-SLE-WE-12-SP3-2017-1828",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2017_2949-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2017:2949-1",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172949-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2017:2949-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2017-November/003381.html"
},
{
"category": "self",
"summary": "SUSE Bug 1049379",
"url": "https://bugzilla.suse.com/1049379"
},
{
"category": "self",
"summary": "SUSE Bug 1050135",
"url": "https://bugzilla.suse.com/1050135"
},
{
"category": "self",
"summary": "SUSE Bug 1052249",
"url": "https://bugzilla.suse.com/1052249"
},
{
"category": "self",
"summary": "SUSE Bug 1052253",
"url": "https://bugzilla.suse.com/1052253"
},
{
"category": "self",
"summary": "SUSE Bug 1052545",
"url": "https://bugzilla.suse.com/1052545"
},
{
"category": "self",
"summary": "SUSE Bug 1054924",
"url": "https://bugzilla.suse.com/1054924"
},
{
"category": "self",
"summary": "SUSE Bug 1055219",
"url": "https://bugzilla.suse.com/1055219"
},
{
"category": "self",
"summary": "SUSE Bug 1055430",
"url": "https://bugzilla.suse.com/1055430"
},
{
"category": "self",
"summary": "SUSE Bug 1061873",
"url": "https://bugzilla.suse.com/1061873"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-7530 page",
"url": "https://www.suse.com/security/cve/CVE-2016-7530/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-11446 page",
"url": "https://www.suse.com/security/cve/CVE-2017-11446/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-11534 page",
"url": "https://www.suse.com/security/cve/CVE-2017-11534/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-12428 page",
"url": "https://www.suse.com/security/cve/CVE-2017-12428/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-12431 page",
"url": "https://www.suse.com/security/cve/CVE-2017-12431/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-12433 page",
"url": "https://www.suse.com/security/cve/CVE-2017-12433/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-13133 page",
"url": "https://www.suse.com/security/cve/CVE-2017-13133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-13139 page",
"url": "https://www.suse.com/security/cve/CVE-2017-13139/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-15033 page",
"url": "https://www.suse.com/security/cve/CVE-2017-15033/"
}
],
"title": "Security update for ImageMagick",
"tracking": {
"current_release_date": "2017-11-08T07:49:35Z",
"generator": {
"date": "2017-11-08T07:49:35Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2017:2949-1",
"initial_release_date": "2017-11-08T07:49:35Z",
"revision_history": [
{
"date": "2017-11-08T07:49:35Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"product": {
"name": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"product_id": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"product": {
"name": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"product_id": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "ImageMagick-6.8.8.1-71.12.1.aarch64",
"product": {
"name": "ImageMagick-6.8.8.1-71.12.1.aarch64",
"product_id": "ImageMagick-6.8.8.1-71.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"product": {
"name": "ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"product_id": "ImageMagick-devel-6.8.8.1-71.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"product": {
"name": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"product_id": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"product": {
"name": "libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"product_id": "libMagick++-devel-6.8.8.1-71.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"product": {
"name": "perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"product_id": "perl-PerlMagick-6.8.8.1-71.12.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "ImageMagick-6.8.8.1-71.12.1.ppc64le",
"product": {
"name": "ImageMagick-6.8.8.1-71.12.1.ppc64le",
"product_id": "ImageMagick-6.8.8.1-71.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"product": {
"name": "ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"product_id": "ImageMagick-devel-6.8.8.1-71.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"product": {
"name": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"product_id": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"product": {
"name": "libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"product_id": "libMagick++-devel-6.8.8.1-71.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"product": {
"name": "perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"product_id": "perl-PerlMagick-6.8.8.1-71.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"product": {
"name": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"product_id": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"product": {
"name": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"product_id": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "ImageMagick-6.8.8.1-71.12.1.s390x",
"product": {
"name": "ImageMagick-6.8.8.1-71.12.1.s390x",
"product_id": "ImageMagick-6.8.8.1-71.12.1.s390x"
}
},
{
"category": "product_version",
"name": "ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"product": {
"name": "ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"product_id": "ImageMagick-devel-6.8.8.1-71.12.1.s390x"
}
},
{
"category": "product_version",
"name": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"product": {
"name": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"product_id": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x"
}
},
{
"category": "product_version",
"name": "libMagick++-devel-6.8.8.1-71.12.1.s390x",
"product": {
"name": "libMagick++-devel-6.8.8.1-71.12.1.s390x",
"product_id": "libMagick++-devel-6.8.8.1-71.12.1.s390x"
}
},
{
"category": "product_version",
"name": "perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"product": {
"name": "perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"product_id": "perl-PerlMagick-6.8.8.1-71.12.1.s390x"
}
},
{
"category": "product_version",
"name": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"product": {
"name": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"product_id": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x"
}
},
{
"category": "product_version",
"name": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"product": {
"name": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"product_id": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "ImageMagick-6.8.8.1-71.12.1.x86_64",
"product": {
"name": "ImageMagick-6.8.8.1-71.12.1.x86_64",
"product_id": "ImageMagick-6.8.8.1-71.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"product": {
"name": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"product_id": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"product": {
"name": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"product_id": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"product": {
"name": "libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"product_id": "libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"product": {
"name": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"product_id": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"product": {
"name": "ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"product_id": "ImageMagick-devel-6.8.8.1-71.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"product": {
"name": "libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"product_id": "libMagick++-devel-6.8.8.1-71.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"product": {
"name": "perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"product_id": "perl-PerlMagick-6.8.8.1-71.12.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Desktop 12 SP2",
"product": {
"name": "SUSE Linux Enterprise Desktop 12 SP2",
"product_id": "SUSE Linux Enterprise Desktop 12 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sled:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Desktop 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Desktop 12 SP3",
"product_id": "SUSE Linux Enterprise Desktop 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sled:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
"product": {
"name": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
"product_id": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Software Development Kit 12 SP2",
"product": {
"name": "SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-sdk:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Software Development Kit 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-sdk:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP2",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Workstation Extension 12 SP2",
"product": {
"name": "SUSE Linux Enterprise Workstation Extension 12 SP2",
"product_id": "SUSE Linux Enterprise Workstation Extension 12 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-we:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Workstation Extension 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Workstation Extension 12 SP3",
"product_id": "SUSE Linux Enterprise Workstation Extension 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-we:12:sp3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-6.8.8.1-71.12.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP2",
"product_id": "SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64"
},
"product_reference": "ImageMagick-6.8.8.1-71.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP2",
"product_id": "SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64"
},
"product_reference": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP2",
"product_id": "SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64"
},
"product_reference": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP2",
"product_id": "SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64"
},
"product_reference": "libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP2",
"product_id": "SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64"
},
"product_reference": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-6.8.8.1-71.12.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP3",
"product_id": "SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64"
},
"product_reference": "ImageMagick-6.8.8.1-71.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP3",
"product_id": "SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64"
},
"product_reference": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP3",
"product_id": "SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64"
},
"product_reference": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP3",
"product_id": "SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64"
},
"product_reference": "libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP3",
"product_id": "SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64"
},
"product_reference": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64 as component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
"product_id": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64"
},
"product_reference": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64 as component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
"product_id": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64"
},
"product_reference": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-6.8.8.1-71.12.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.aarch64"
},
"product_reference": "ImageMagick-6.8.8.1-71.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-6.8.8.1-71.12.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.ppc64le"
},
"product_reference": "ImageMagick-6.8.8.1-71.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-6.8.8.1-71.12.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.s390x"
},
"product_reference": "ImageMagick-6.8.8.1-71.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-6.8.8.1-71.12.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64"
},
"product_reference": "ImageMagick-6.8.8.1-71.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-devel-6.8.8.1-71.12.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.aarch64"
},
"product_reference": "ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-devel-6.8.8.1-71.12.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le"
},
"product_reference": "ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-devel-6.8.8.1-71.12.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.s390x"
},
"product_reference": "ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-devel-6.8.8.1-71.12.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.x86_64"
},
"product_reference": "ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64"
},
"product_reference": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le"
},
"product_reference": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x"
},
"product_reference": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64"
},
"product_reference": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-devel-6.8.8.1-71.12.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.aarch64"
},
"product_reference": "libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-devel-6.8.8.1-71.12.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.ppc64le"
},
"product_reference": "libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-devel-6.8.8.1-71.12.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.s390x"
},
"product_reference": "libMagick++-devel-6.8.8.1-71.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-devel-6.8.8.1-71.12.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.x86_64"
},
"product_reference": "libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-PerlMagick-6.8.8.1-71.12.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.aarch64"
},
"product_reference": "perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-PerlMagick-6.8.8.1-71.12.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le"
},
"product_reference": "perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-PerlMagick-6.8.8.1-71.12.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.s390x"
},
"product_reference": "perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-PerlMagick-6.8.8.1-71.12.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.x86_64"
},
"product_reference": "perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-6.8.8.1-71.12.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.aarch64"
},
"product_reference": "ImageMagick-6.8.8.1-71.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-6.8.8.1-71.12.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.ppc64le"
},
"product_reference": "ImageMagick-6.8.8.1-71.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-6.8.8.1-71.12.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.s390x"
},
"product_reference": "ImageMagick-6.8.8.1-71.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-6.8.8.1-71.12.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64"
},
"product_reference": "ImageMagick-6.8.8.1-71.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-devel-6.8.8.1-71.12.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.aarch64"
},
"product_reference": "ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-devel-6.8.8.1-71.12.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le"
},
"product_reference": "ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-devel-6.8.8.1-71.12.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.s390x"
},
"product_reference": "ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-devel-6.8.8.1-71.12.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.x86_64"
},
"product_reference": "ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64"
},
"product_reference": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le"
},
"product_reference": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x"
},
"product_reference": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64"
},
"product_reference": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-devel-6.8.8.1-71.12.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.aarch64"
},
"product_reference": "libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-devel-6.8.8.1-71.12.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.ppc64le"
},
"product_reference": "libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-devel-6.8.8.1-71.12.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.s390x"
},
"product_reference": "libMagick++-devel-6.8.8.1-71.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-devel-6.8.8.1-71.12.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.x86_64"
},
"product_reference": "libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-PerlMagick-6.8.8.1-71.12.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.aarch64"
},
"product_reference": "perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-PerlMagick-6.8.8.1-71.12.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le"
},
"product_reference": "perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-PerlMagick-6.8.8.1-71.12.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.s390x"
},
"product_reference": "perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-PerlMagick-6.8.8.1-71.12.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.x86_64"
},
"product_reference": "perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64"
},
"product_reference": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le"
},
"product_reference": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x as component of SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x"
},
"product_reference": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64"
},
"product_reference": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64"
},
"product_reference": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le"
},
"product_reference": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x as component of SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x"
},
"product_reference": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64"
},
"product_reference": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64"
},
"product_reference": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le"
},
"product_reference": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x"
},
"product_reference": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64"
},
"product_reference": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64"
},
"product_reference": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le"
},
"product_reference": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x"
},
"product_reference": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64"
},
"product_reference": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64"
},
"product_reference": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le"
},
"product_reference": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x"
},
"product_reference": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64"
},
"product_reference": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64"
},
"product_reference": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le"
},
"product_reference": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x"
},
"product_reference": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64"
},
"product_reference": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64"
},
"product_reference": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le"
},
"product_reference": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x"
},
"product_reference": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64"
},
"product_reference": "libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64"
},
"product_reference": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le"
},
"product_reference": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x"
},
"product_reference": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64"
},
"product_reference": "libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-6.8.8.1-71.12.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 12 SP2",
"product_id": "SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64"
},
"product_reference": "ImageMagick-6.8.8.1-71.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 12 SP2",
"product_id": "SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64"
},
"product_reference": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 12 SP2",
"product_id": "SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64"
},
"product_reference": "libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-6.8.8.1-71.12.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 12 SP3",
"product_id": "SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64"
},
"product_reference": "ImageMagick-6.8.8.1-71.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 12 SP3",
"product_id": "SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64"
},
"product_reference": "libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 12 SP3",
"product_id": "SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64"
},
"product_reference": "libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 12 SP3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2016-7530",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-7530"
}
],
"notes": [
{
"category": "general",
"text": "The quantum handling code in ImageMagick allows remote attackers to cause a denial of service (divide-by-zero error or out-of-bounds write) via a crafted file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-7530",
"url": "https://www.suse.com/security/cve/CVE-2016-7530"
},
{
"category": "external",
"summary": "SUSE Bug 1000399 for CVE-2016-7530",
"url": "https://bugzilla.suse.com/1000399"
},
{
"category": "external",
"summary": "SUSE Bug 1000703 for CVE-2016-7530",
"url": "https://bugzilla.suse.com/1000703"
},
{
"category": "external",
"summary": "SUSE Bug 1054924 for CVE-2016-7530",
"url": "https://bugzilla.suse.com/1054924"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-11-08T07:49:35Z",
"details": "moderate"
}
],
"title": "CVE-2016-7530"
},
{
"cve": "CVE-2017-11446",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-11446"
}
],
"notes": [
{
"category": "general",
"text": "The ReadPESImage function in coders\\pes.c in ImageMagick 7.0.6-1 has an infinite loop vulnerability that can cause CPU exhaustion via a crafted PES file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-11446",
"url": "https://www.suse.com/security/cve/CVE-2017-11446"
},
{
"category": "external",
"summary": "SUSE Bug 1049379 for CVE-2017-11446",
"url": "https://bugzilla.suse.com/1049379"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-11-08T07:49:35Z",
"details": "moderate"
}
],
"title": "CVE-2017-11446"
},
{
"cve": "CVE-2017-11534",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-11534"
}
],
"notes": [
{
"category": "general",
"text": "When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Memory Leak in the lite_font_map() function in coders/wmf.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-11534",
"url": "https://www.suse.com/security/cve/CVE-2017-11534"
},
{
"category": "external",
"summary": "SUSE Bug 1050135 for CVE-2017-11534",
"url": "https://bugzilla.suse.com/1050135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-11-08T07:49:35Z",
"details": "moderate"
}
],
"title": "CVE-2017-11534"
},
{
"cve": "CVE-2017-12428",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-12428"
}
],
"notes": [
{
"category": "general",
"text": "In ImageMagick 7.0.6-1, a memory leak vulnerability was found in the function ReadWMFImage in coders/wmf.c, which allows attackers to cause a denial of service in CloneDrawInfo in draw.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-12428",
"url": "https://www.suse.com/security/cve/CVE-2017-12428"
},
{
"category": "external",
"summary": "SUSE Bug 1052249 for CVE-2017-12428",
"url": "https://bugzilla.suse.com/1052249"
},
{
"category": "external",
"summary": "SUSE Bug 1052253 for CVE-2017-12428",
"url": "https://bugzilla.suse.com/1052253"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-11-08T07:49:35Z",
"details": "important"
}
],
"title": "CVE-2017-12428"
},
{
"cve": "CVE-2017-12431",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-12431"
}
],
"notes": [
{
"category": "general",
"text": "In ImageMagick 7.0.6-1, a use-after-free vulnerability was found in the function ReadWMFImage in coders/wmf.c, which allows attackers to cause a denial of service.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-12431",
"url": "https://www.suse.com/security/cve/CVE-2017-12431"
},
{
"category": "external",
"summary": "SUSE Bug 1052249 for CVE-2017-12431",
"url": "https://bugzilla.suse.com/1052249"
},
{
"category": "external",
"summary": "SUSE Bug 1052253 for CVE-2017-12431",
"url": "https://bugzilla.suse.com/1052253"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-11-08T07:49:35Z",
"details": "important"
}
],
"title": "CVE-2017-12431"
},
{
"cve": "CVE-2017-12433",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-12433"
}
],
"notes": [
{
"category": "general",
"text": "In ImageMagick 7.0.6-1, a memory leak vulnerability was found in the function ReadPESImage in coders/pes.c, which allows attackers to cause a denial of service, related to ResizeMagickMemory in memory.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-12433",
"url": "https://www.suse.com/security/cve/CVE-2017-12433"
},
{
"category": "external",
"summary": "SUSE Bug 1052545 for CVE-2017-12433",
"url": "https://bugzilla.suse.com/1052545"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-11-08T07:49:35Z",
"details": "moderate"
}
],
"title": "CVE-2017-12433"
},
{
"cve": "CVE-2017-13133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-13133"
}
],
"notes": [
{
"category": "general",
"text": "In ImageMagick 7.0.6-8, the load_level function in coders/xcf.c lacks offset validation, which allows attackers to cause a denial of service (load_tile memory exhaustion) via a crafted file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-13133",
"url": "https://www.suse.com/security/cve/CVE-2017-13133"
},
{
"category": "external",
"summary": "SUSE Bug 1055219 for CVE-2017-13133",
"url": "https://bugzilla.suse.com/1055219"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-11-08T07:49:35Z",
"details": "important"
}
],
"title": "CVE-2017-13133"
},
{
"cve": "CVE-2017-13139",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-13139"
}
],
"notes": [
{
"category": "general",
"text": "In ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1, the ReadOneMNGImage function in coders/png.c has an out-of-bounds read with the MNG CLIP chunk.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-13139",
"url": "https://www.suse.com/security/cve/CVE-2017-13139"
},
{
"category": "external",
"summary": "SUSE Bug 1055430 for CVE-2017-13139",
"url": "https://bugzilla.suse.com/1055430"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-11-08T07:49:35Z",
"details": "important"
}
],
"title": "CVE-2017-13139"
},
{
"cve": "CVE-2017-15033",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-15033"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick version 7.0.7-2 contains a memory leak in ReadYUVImage in coders/yuv.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-15033",
"url": "https://www.suse.com/security/cve/CVE-2017-15033"
},
{
"category": "external",
"summary": "SUSE Bug 1061873 for CVE-2017-15033",
"url": "https://bugzilla.suse.com/1061873"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.12.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-11-08T07:49:35Z",
"details": "moderate"
}
],
"title": "CVE-2017-15033"
}
]
}
gsd-2017-13139
Vulnerability from gsd
Modified
2023-12-13 01:21
Details
In ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1, the ReadOneMNGImage function in coders/png.c has an out-of-bounds read with the MNG CLIP chunk.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2017-13139",
"description": "In ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1, the ReadOneMNGImage function in coders/png.c has an out-of-bounds read with the MNG CLIP chunk.",
"id": "GSD-2017-13139",
"references": [
"https://www.suse.com/security/cve/CVE-2017-13139.html",
"https://www.debian.org/security/2017/dsa-4040",
"https://www.debian.org/security/2017/dsa-4019",
"https://ubuntu.com/security/CVE-2017-13139",
"https://advisories.mageia.org/CVE-2017-13139.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2017-13139"
],
"details": "In ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1, the ReadOneMNGImage function in coders/png.c has an out-of-bounds read with the MNG CLIP chunk.",
"id": "GSD-2017-13139",
"modified": "2023-12-13T01:21:01.606957Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2017-13139",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "In ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1, the ReadOneMNGImage function in coders/png.c has an out-of-bounds read with the MNG CLIP chunk."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "DSA-4040",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2017/dsa-4040"
},
{
"name": "USN-3681-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3681-1/"
},
{
"name": "GLSA-201711-07",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/201711-07"
},
{
"name": "100494",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/100494"
},
{
"name": "DSA-4019",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2017/dsa-4019"
},
{
"name": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=870109",
"refsource": "CONFIRM",
"url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=870109"
},
{
"name": "https://github.com/ImageMagick/ImageMagick/commit/d072ed6aff835c174e856ce3a428163c0da9e8f4",
"refsource": "CONFIRM",
"url": "https://github.com/ImageMagick/ImageMagick/commit/d072ed6aff835c174e856ce3a428163c0da9e8f4"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.5-2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.5-3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.4-0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.4-1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.4-8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.4-9:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.3-6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.3-7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.2-3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.2-4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.0-0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.1-0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.1-1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.1-8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.1-9:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.6-0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.5-6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.5-7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.4-4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.4-5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.3-2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.3-3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.3-10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.2-0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.2-7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.2-8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.1-4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.1-5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.5-4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.5-5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.4-2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.5-0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.5-1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.5-8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.5-10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.4-6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.4-7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.3-4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.3-5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.2-1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.2-2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.2-9:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.2-10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.1-6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.1-7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.4-3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.4-10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.3-0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.3-1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.3-8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.3-9:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.2-5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.2-6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.1-2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.1-3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:7.0.1-10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "6.9.9-0",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2017-13139"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "In ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1, the ReadOneMNGImage function in coders/png.c has an out-of-bounds read with the MNG CLIP chunk."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-125"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=870109",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=870109"
},
{
"name": "100494",
"refsource": "BID",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/100494"
},
{
"name": "DSA-4019",
"refsource": "DEBIAN",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2017/dsa-4019"
},
{
"name": "GLSA-201711-07",
"refsource": "GENTOO",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/201711-07"
},
{
"name": "DSA-4040",
"refsource": "DEBIAN",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2017/dsa-4040"
},
{
"name": "USN-3681-1",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3681-1/"
},
{
"name": "https://github.com/ImageMagick/ImageMagick/commit/d072ed6aff835c174e856ce3a428163c0da9e8f4",
"refsource": "CONFIRM",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://github.com/ImageMagick/ImageMagick/commit/d072ed6aff835c174e856ce3a428163c0da9e8f4"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": true,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
},
"lastModifiedDate": "2020-10-14T18:56Z",
"publishedDate": "2017-08-23T06:29Z"
}
}
}
cnvd-2017-25059
Vulnerability from cnvd
Title: ImageMagick远程代码执行漏洞(CNVD-2017-25059)
Description:
ImageMagick是美国ImageMagick Studio公司的一套开源的图象处理软件。该软件可读取、转换、写入多种格式的图片。
ImageMagick 6.9.9-0之前的版本和7.0.6-1之前的7.x版本中的coders/png.c文件的‘ReadOneMNGImage’函数存在远程代码执行漏洞,攻击者利用漏洞通过上传恶意构造的图像文件,在目标服务器执行任意代码。
Severity: 高
Patch Name: ImageMagick远程代码执行漏洞(CNVD-2017-25059)的补丁
Patch Description:
ImageMagick是美国ImageMagick Studio公司的一套开源的图象处理软件。该软件可读取、转换、写入多种格式的图片。
ImageMagick 6.9.9-0之前的版本和7.0.6-1之前的7.x版本中的coders/png.c文件的‘ReadOneMNGImage’函数存在远程代码执行漏洞,攻击者利用漏洞通过上传恶意构造的图像文件,在目标服务器执行任意代码。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description:
目前厂商已经发布了升级补丁以修复此安全问题,补丁获取链接: https://github.com/ImageMagick/ImageMagick/commit/22e0310345499ffe906c604428f2a3a668942b05
Reference: https://nvd.nist.gov/vuln/detail/CVE-2017-13139
Impacted products
| Name | ['ImageMagick ImageMagick <6.9.9-0', 'ImageMagick ImageMagick 7.*<7.0.6-1'] |
|---|
{
"bids": {
"bid": {
"bidNumber": "100494"
}
},
"cves": {
"cve": {
"cveNumber": "CVE-2017-13139"
}
},
"description": "ImageMagick\u662f\u7f8e\u56fdImageMagick Studio\u516c\u53f8\u7684\u4e00\u5957\u5f00\u6e90\u7684\u56fe\u8c61\u5904\u7406\u8f6f\u4ef6\u3002\u8be5\u8f6f\u4ef6\u53ef\u8bfb\u53d6\u3001\u8f6c\u6362\u3001\u5199\u5165\u591a\u79cd\u683c\u5f0f\u7684\u56fe\u7247\u3002\r\n\r\nImageMagick 6.9.9-0\u4e4b\u524d\u7684\u7248\u672c\u548c7.0.6-1\u4e4b\u524d\u76847.x\u7248\u672c\u4e2d\u7684coders/png.c\u6587\u4ef6\u7684\u2018ReadOneMNGImage\u2019\u51fd\u6570\u5b58\u5728\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u5229\u7528\u6f0f\u6d1e\u901a\u8fc7\u4e0a\u4f20\u6076\u610f\u6784\u9020\u7684\u56fe\u50cf\u6587\u4ef6\uff0c\u5728\u76ee\u6807\u670d\u52a1\u5668\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002",
"discovererName": "Bastien ROUCARIES \u003croucaries.bastien@gmail.com\u003e",
"formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6b64\u5b89\u5168\u95ee\u9898\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://github.com/ImageMagick/ImageMagick/commit/22e0310345499ffe906c604428f2a3a668942b05",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2017-25059",
"openTime": "2017-09-05",
"patchDescription": "ImageMagick\u662f\u7f8e\u56fdImageMagick Studio\u516c\u53f8\u7684\u4e00\u5957\u5f00\u6e90\u7684\u56fe\u8c61\u5904\u7406\u8f6f\u4ef6\u3002\u8be5\u8f6f\u4ef6\u53ef\u8bfb\u53d6\u3001\u8f6c\u6362\u3001\u5199\u5165\u591a\u79cd\u683c\u5f0f\u7684\u56fe\u7247\u3002\r\n\r\nImageMagick 6.9.9-0\u4e4b\u524d\u7684\u7248\u672c\u548c7.0.6-1\u4e4b\u524d\u76847.x\u7248\u672c\u4e2d\u7684coders/png.c\u6587\u4ef6\u7684\u2018ReadOneMNGImage\u2019\u51fd\u6570\u5b58\u5728\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u5229\u7528\u6f0f\u6d1e\u901a\u8fc7\u4e0a\u4f20\u6076\u610f\u6784\u9020\u7684\u56fe\u50cf\u6587\u4ef6\uff0c\u5728\u76ee\u6807\u670d\u52a1\u5668\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "ImageMagick\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\uff08CNVD-2017-25059\uff09\u7684\u8865\u4e01",
"products": {
"product": [
"ImageMagick ImageMagick \u003c6.9.9-0",
"ImageMagick ImageMagick 7.*\u003c7.0.6-1"
]
},
"referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2017-13139",
"serverity": "\u9ad8",
"submitTime": "2017-08-24",
"title": "ImageMagick\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\uff08CNVD-2017-25059\uff09"
}
ghsa-pj36-9rxw-2h2x
Vulnerability from github
Published
2022-05-13 01:14
Modified
2025-04-20 03:43
Severity ?
VLAI Severity ?
Details
In ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1, the ReadOneMNGImage function in coders/png.c has an out-of-bounds read with the MNG CLIP chunk.
{
"affected": [],
"aliases": [
"CVE-2017-13139"
],
"database_specific": {
"cwe_ids": [
"CWE-125"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2017-08-23T06:29:00Z",
"severity": "CRITICAL"
},
"details": "In ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1, the ReadOneMNGImage function in coders/png.c has an out-of-bounds read with the MNG CLIP chunk.",
"id": "GHSA-pj36-9rxw-2h2x",
"modified": "2025-04-20T03:43:44Z",
"published": "2022-05-13T01:14:42Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13139"
},
{
"type": "WEB",
"url": "https://github.com/ImageMagick/ImageMagick/commit/d072ed6aff835c174e856ce3a428163c0da9e8f4"
},
{
"type": "WEB",
"url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=870109"
},
{
"type": "WEB",
"url": "https://security.gentoo.org/glsa/201711-07"
},
{
"type": "WEB",
"url": "https://usn.ubuntu.com/3681-1"
},
{
"type": "WEB",
"url": "https://www.debian.org/security/2017/dsa-4019"
},
{
"type": "WEB",
"url": "https://www.debian.org/security/2017/dsa-4040"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/100494"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
fkie_cve-2017-13139
Vulnerability from fkie_nvd
Published
2017-08-23 06:29
Modified
2025-04-20 01:37
Severity ?
Summary
In ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1, the ReadOneMNGImage function in coders/png.c has an out-of-bounds read with the MNG CLIP chunk.
References
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:*:*:*:*:*:*:*:*",
"matchCriteriaId": "FD50817F-6EB7-477D-B5D9-A7E1B10E5FF6",
"versionEndIncluding": "6.9.9-0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.0-0:*:*:*:*:*:*:*",
"matchCriteriaId": "3B7CCC6B-C66E-48E2-BA1E-CBF6421B4FEB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.1-0:*:*:*:*:*:*:*",
"matchCriteriaId": "693C9F8F-A8C1-4D06-8F31-E085E16E701C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.1-1:*:*:*:*:*:*:*",
"matchCriteriaId": "6D3D3DFC-8459-41BA-BF3E-AE84E48FCEE7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.1-2:*:*:*:*:*:*:*",
"matchCriteriaId": "A3E12EB4-B8F6-43A3-847D-DBC96AE10905",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.1-3:*:*:*:*:*:*:*",
"matchCriteriaId": "30539421-5872-4C2E-94AE-8A2B05C952C0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.1-4:*:*:*:*:*:*:*",
"matchCriteriaId": "1A5B7537-8563-409D-82DE-EB07107D3C04",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.1-5:*:*:*:*:*:*:*",
"matchCriteriaId": "FA648D3C-A464-4F54-8B5E-E8431531FBB5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.1-6:*:*:*:*:*:*:*",
"matchCriteriaId": "D6666BB0-B211-490F-884C-BE410CD19DAF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.1-7:*:*:*:*:*:*:*",
"matchCriteriaId": "5FF2582D-1513-448B-8B61-9C4844B08324",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.1-8:*:*:*:*:*:*:*",
"matchCriteriaId": "E57E6BA4-A727-4CF5-B15F-76632D02617A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.1-9:*:*:*:*:*:*:*",
"matchCriteriaId": "C721BC6F-61DD-4ED1-8024-2946C494AEC4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.1-10:*:*:*:*:*:*:*",
"matchCriteriaId": "CD319D32-FE7A-456D-AFEE-DC9F0D98652C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.2-0:*:*:*:*:*:*:*",
"matchCriteriaId": "09CDF263-38F5-469F-984B-9D9A223159B3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.2-1:*:*:*:*:*:*:*",
"matchCriteriaId": "243FF3C1-D676-4D5F-A90C-3017DCBBE73A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.2-2:*:*:*:*:*:*:*",
"matchCriteriaId": "1B8BDDE6-6B38-442B-83A4-FAADBAE1C792",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.2-3:*:*:*:*:*:*:*",
"matchCriteriaId": "4DCD89B9-6A69-41DE-BE38-5E9193828279",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.2-4:*:*:*:*:*:*:*",
"matchCriteriaId": "139BC277-8E00-4700-8B47-6D3A3CB38B04",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.2-5:*:*:*:*:*:*:*",
"matchCriteriaId": "D0FA2E18-6F7B-49D6-B60C-38851398F9B7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.2-6:*:*:*:*:*:*:*",
"matchCriteriaId": "7B7F510A-A439-47A3-AF31-4BF7F74D58A5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.2-7:*:*:*:*:*:*:*",
"matchCriteriaId": "A91B94E3-33BB-46B6-A1AE-EAA9906605CF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.2-8:*:*:*:*:*:*:*",
"matchCriteriaId": "F5B3DE17-08A8-457D-9AEB-BD6E04376B34",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.2-9:*:*:*:*:*:*:*",
"matchCriteriaId": "98AD438E-28B7-4491-B58F-55FDE7F67CFD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.2-10:*:*:*:*:*:*:*",
"matchCriteriaId": "7E033A09-4F2F-4957-A9A8-5C9E7D90A1CA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.3-0:*:*:*:*:*:*:*",
"matchCriteriaId": "BB9B68E7-0E40-437A-A71B-0C078FE76FD8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.3-1:*:*:*:*:*:*:*",
"matchCriteriaId": "948D5778-AD2A-4293-AE39-A406D75F5678",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.3-2:*:*:*:*:*:*:*",
"matchCriteriaId": "D391DECE-2408-4A8F-ACE6-F18028C422A3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.3-3:*:*:*:*:*:*:*",
"matchCriteriaId": "CC773CB4-0E7B-4D73-AB9C-D7CC98C38BD7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.3-4:*:*:*:*:*:*:*",
"matchCriteriaId": "24A0C584-9DA3-48B0-B152-67B9E0239876",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.3-5:*:*:*:*:*:*:*",
"matchCriteriaId": "E42943C5-CC66-4E88-9085-1BD39937C09B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.3-6:*:*:*:*:*:*:*",
"matchCriteriaId": "E396985D-BE6A-4F4C-B294-FE69724534EF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.3-7:*:*:*:*:*:*:*",
"matchCriteriaId": "D1D84944-322C-4B5D-9B1C-587301747A34",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.3-8:*:*:*:*:*:*:*",
"matchCriteriaId": "B48F5327-CA20-4756-A06F-B30B660E8DA7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.3-9:*:*:*:*:*:*:*",
"matchCriteriaId": "84C11EC2-C798-4C3B-8E00-9C70C3499B33",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.3-10:*:*:*:*:*:*:*",
"matchCriteriaId": "D30A3BD6-5903-42D6-A1E3-C6D2FE468A1E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.4-0:*:*:*:*:*:*:*",
"matchCriteriaId": "441F9FAE-11FA-4976-8BB3-4A3A79B57663",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.4-1:*:*:*:*:*:*:*",
"matchCriteriaId": "F4389D4A-8AD4-421E-AD4D-6761F45B7F6B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.4-2:*:*:*:*:*:*:*",
"matchCriteriaId": "1620AF57-49AF-4487-80A1-07627F50F817",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.4-3:*:*:*:*:*:*:*",
"matchCriteriaId": "DF373D13-0AB1-4518-AFFE-D09A5F56E992",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.4-4:*:*:*:*:*:*:*",
"matchCriteriaId": "86483865-BFC3-4845-80DE-A6AC632A92A2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.4-5:*:*:*:*:*:*:*",
"matchCriteriaId": "2A147E12-E5D4-400E-9432-BB5BCF2352CE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.4-6:*:*:*:*:*:*:*",
"matchCriteriaId": "B1F2BF9D-9821-424E-8F06-BFB637C103A7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.4-7:*:*:*:*:*:*:*",
"matchCriteriaId": "26D7231D-442B-4E7C-BCB2-EE8D787FD46D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.4-8:*:*:*:*:*:*:*",
"matchCriteriaId": "749B8733-47B0-4F63-874D-62DF323CD045",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.4-9:*:*:*:*:*:*:*",
"matchCriteriaId": "AD9D1C91-B67A-430B-AB24-DCC7DAF69D7C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.4-10:*:*:*:*:*:*:*",
"matchCriteriaId": "0C5BE761-44E8-4614-BBD4-3FA7148156B0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.5-0:*:*:*:*:*:*:*",
"matchCriteriaId": "79AA4723-3637-4FA7-AE60-9CEE7C535A13",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.5-1:*:*:*:*:*:*:*",
"matchCriteriaId": "2D1F577A-316C-4ECE-91CB-4C15F12CC63B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.5-2:*:*:*:*:*:*:*",
"matchCriteriaId": "800A90FA-0B60-4AB7-8061-C9365432C09B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.5-3:*:*:*:*:*:*:*",
"matchCriteriaId": "77990FE0-5063-455A-BF06-2CD41393E0E2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.5-4:*:*:*:*:*:*:*",
"matchCriteriaId": "68F19A0F-29E9-40A5-B6BB-23C20343CDBE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.5-5:*:*:*:*:*:*:*",
"matchCriteriaId": "72A65A02-CD63-4DDD-AFCC-FE6988F85E13",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.5-6:*:*:*:*:*:*:*",
"matchCriteriaId": "25690796-E494-4D28-BB4F-AAF40D596AC7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.5-7:*:*:*:*:*:*:*",
"matchCriteriaId": "A2C0242E-0292-4DF7-A3FC-BE96DA95E7D4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.5-8:*:*:*:*:*:*:*",
"matchCriteriaId": "9F853E8E-1ED2-4BDA-BE60-BBE1F658695B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.5-10:*:*:*:*:*:*:*",
"matchCriteriaId": "3D7D7BFB-7FE0-4477-AF72-E5BCE1A39FFC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:7.0.6-0:*:*:*:*:*:*:*",
"matchCriteriaId": "5F56AEC8-473C-4898-A9A8-14E151F3A322",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*",
"matchCriteriaId": "C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*",
"matchCriteriaId": "7A5301BF-1402-4BE0-A0F8-69FBE79BC6D6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*",
"matchCriteriaId": "F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*",
"matchCriteriaId": "9070C9D8-A14A-467F-8253-33B966C16886",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*",
"matchCriteriaId": "23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "In ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1, the ReadOneMNGImage function in coders/png.c has an out-of-bounds read with the MNG CLIP chunk."
},
{
"lang": "es",
"value": "En ImageMagick en versiones anteriores a la 6.9.9-0 y 7.x en versiones anteriores a la 7.0.6-1, la funci\u00f3n ReadOneMNGImage en coders/png.c tiene una lectura fuera de l\u00edmites con el fragmento MNG CLIP."
}
],
"id": "CVE-2017-13139",
"lastModified": "2025-04-20T01:37:25.860",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": true,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2017-08-23T06:29:00.183",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/100494"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=870109"
},
{
"source": "cve@mitre.org",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://github.com/ImageMagick/ImageMagick/commit/d072ed6aff835c174e856ce3a428163c0da9e8f4"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/201711-07"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3681-1/"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2017/dsa-4019"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2017/dsa-4040"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/100494"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=870109"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://github.com/ImageMagick/ImageMagick/commit/d072ed6aff835c174e856ce3a428163c0da9e8f4"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/201711-07"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3681-1/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2017/dsa-4019"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2017/dsa-4040"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-125"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…