[Pkg-gmagick-im-team] Bug#1027164: imagemagick: CVE-2021-3574
Moritz Mühlenhoff
jmm at inutil.org
Wed Dec 28 18:52:55 GMT 2022
Source: imagemagick
X-Debbugs-CC: team at security.debian.org
Severity: normal
Tags: security
Hi,
The following vulnerability was published for imagemagick.
CVE-2021-3574[0]:
| A vulnerability was found in ImageMagick-7.0.11-5, where executing a
| crafted file with the convert command, ASAN detects memory leaks.
https://github.com/ImageMagick/ImageMagick/issues/3540
https://github.com/ImageMagick/ImageMagick6/commit/cd7f9fb7751b0d59d5a74b12d971155caad5a792
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2021-3574
https://www.cve.org/CVERecord?id=CVE-2021-3574
Please adjust the affected versions in the BTS as needed.
More information about the Pkg-gmagick-im-team
mailing list