Ubuntu 16.04 ELS: imagemagick package released - TuxCare

Ubuntu 16.04 ELS: imagemagick package released

TuxCare Team

July 22, 2021

changelog, Ubuntu16.04 ELS

A new updated imagemagick package within Ubuntu 16.04 ELS is now available for download from our production repository.

The following CVEs were fixed in this update:

  • CVE-2020-27766
  • CVE-2021-20176
  • CVE-2021-20241
  • CVE-2021-20243
  • CVE-2021-20244
  • CVE-2021-20246
  • CVE-2021-20309
  • CVE-2021-20311
  • CVE-2021-20312
  • CVE-2021-20313

CHANGELOG

imagemagick-6.8.9.9-7ubuntu5.17

  • Fix undefined behavior in the form of values outside the range of ‘unsigned long’ type (CVE-2020-27766)
  • Fix potential division by zero in many places (CVE-2021-20176, CVE-2021-20241, CVE-2021-20243, CVE-2021-20244, CVE-2021-20246, CVE-2021-20309, CVE-2021-20311)
  • Fix potential integer overflow in coders/thumbnail.c which can affect system availability (CVE-2021-20312)
  • Ensure memory is always zeroed in magick/memory.c (CVE-2021-20313)

UPDATE COMMAND

apt-get update
apt-get --only-upgrade install imagemagick

Stay in the Loop

Resources

State of Enterprise Linux Cybersecurity ... Read More State of Enterprise Linux Cybersecurity ...
Dangerous remotely exploitable vulnerability ... Read More Dangerous remotely exploitable vulnerability ...
Securing confidential research data ... Read More Securing confidential research data ...
State of Enterprise Vulnerability Detection ... Read More State of Enterprise Vulnerability Detection ...
Demand for Rapid Risk Elimination for ... Read More Demand for Rapid Risk Elimination for ...
TuxCare Free Raspberry Pi Patching Read More TuxCare Free Raspberry Pi Patching