USN-7053-1: ImageMagick vulnerabilities

Packages

imagemagick - Image manipulation programs and library

Details

It was discovered that ImageMagick incorrectly handled certain malformed
image files. If a user or automated system using ImageMagick were tricked
into opening a specially crafted image, an attacker could exploit this to
cause a denial of service or potentially leak sensitive information.
These vulnerabilities included heap and stack-based buffer overflows,
memory leaks, and improper handling of uninitialized values.

Update instructions

In general, a standard system update will make all the necessary changes.

Learn more about how to get the fixes.

Ubuntu Release	Package Version
14.04 LTS trusty	imagemagick – 8:6.7.7.10-6ubuntu3.13+esm10
	libmagick++-dev – 8:6.7.7.10-6ubuntu3.13+esm10
	libmagick++5 – 8:6.7.7.10-6ubuntu3.13+esm10
	libmagickcore-dev – 8:6.7.7.10-6ubuntu3.13+esm10
	libmagickcore5 – 8:6.7.7.10-6ubuntu3.13+esm10
	libmagickcore5-extra – 8:6.7.7.10-6ubuntu3.13+esm10
	libmagickwand-dev – 8:6.7.7.10-6ubuntu3.13+esm10
	libmagickwand5 – 8:6.7.7.10-6ubuntu3.13+esm10
	perlmagick – 8:6.7.7.10-6ubuntu3.13+esm10

Reduce your security exposure

Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines.

Get Ubuntu Pro

Packages

Details

Update instructions

Reduce your security exposure

References

Related notices