Ubuntu 16.04 ELS: imagemagick package released
A new updated imagemagick package within Ubuntu 16.04 ELS is now available for download from our production repository.
The following CVEs were fixed in this update:
- CVE-2020-27766
- CVE-2021-20176
- CVE-2021-20241
- CVE-2021-20243
- CVE-2021-20244
- CVE-2021-20246
- CVE-2021-20309
- CVE-2021-20311
- CVE-2021-20312
- CVE-2021-20313
CHANGELOG
imagemagick-6.8.9.9-7ubuntu5.
- Fix undefined behavior in the form of values outside the range of ‘unsigned long’ type (CVE-2020-27766)
- Fix potential division by zero in many places (CVE-2021-20176, CVE-2021-20241, CVE-2021-20243, CVE-2021-20244, CVE-2021-20246, CVE-2021-20309, CVE-2021-20311)
- Fix potential integer overflow in coders/thumbnail.c which can affect system availability (CVE-2021-20312)
- Ensure memory is always zeroed in magick/memory.c (CVE-2021-20313)
UPDATE COMMAND
apt-get update apt-get --only-upgrade install imagemagick
