Bugzilla – Full Text Bug Listing |
Summary: | VUL-0: CVE-2022-2719: ImageMagick: DoS due to attempted writing of NULL image list | ||
---|---|---|---|
Product: | [Novell Products] SUSE Security Incidents | Reporter: | Robert Frohl <rfrohl> |
Component: | Incidents | Assignee: | Security Team bot <security-team> |
Status: | NEW --- | QA Contact: | Security Team bot <security-team> |
Severity: | Normal | ||
Priority: | P3 - Medium | CC: | security-team |
Version: | unspecified | ||
Target Milestone: | --- | ||
Hardware: | Other | ||
OS: | Other | ||
URL: | https://smash.suse.de/issue/339197/ | ||
Whiteboard: | CVSSv3.1:SUSE:CVE-2022-2719:5.5:(AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H) | ||
Found By: | Security Response Team | Services Priority: | |
Business Priority: | Blocker: | --- | |
Marketing QA Status: | --- | IT Deployment: | --- |
Description
Robert Frohl
2022-08-09 05:45:54 UTC
tracking as affected: - SUSE:SLE-15:Update/ImageMagick - SUSE:SLE-15-SP2:Update/ImageMagick - SUSE:SLE-15-SP4:Update/ImageMagick No testcase found. Submitted for 15sp4,15sp2,15/ImageMagick. SUSE-SU-2022:2998-1: An update that fixes two vulnerabilities is now available. Category: security (moderate) Bug References: 1199350,1202250 CVE References: CVE-2022-2719,CVE-2022-28463 JIRA References: Sources used: openSUSE Leap 15.4 (src): ImageMagick-7.1.0.9-150400.6.6.1 SUSE Linux Enterprise Module for Development Tools 15-SP4 (src): ImageMagick-7.1.0.9-150400.6.6.1 SUSE Linux Enterprise Module for Desktop Applications 15-SP4 (src): ImageMagick-7.1.0.9-150400.6.6.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination. SUSE-SU-2022:3119-1: An update that fixes two vulnerabilities is now available. Category: security (moderate) Bug References: 1202250,1202800 CVE References: CVE-2021-20224,CVE-2022-2719 JIRA References: Sources used: openSUSE Leap 15.4 (src): ImageMagick-7.0.7.34-150200.10.36.1 openSUSE Leap 15.3 (src): ImageMagick-7.0.7.34-150200.10.36.1 SUSE Linux Enterprise Module for Development Tools 15-SP3 (src): ImageMagick-7.0.7.34-150200.10.36.1 SUSE Linux Enterprise Module for Desktop Applications 15-SP3 (src): ImageMagick-7.0.7.34-150200.10.36.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination. |