Bug 1016589 - VUL-0: imagemagick: Check validity of extend during TIFF file reading
VUL-0: imagemagick: Check validity of extend during TIFF file reading
Status: RESOLVED DUPLICATE of bug 1017320
Classification: Novell Products
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents
unspecified
Other Other
: P3 - Medium : Normal
: unspecified
Assigned To: Petr Gajdos
Security Team bot
CVSSv2:NVD:CVE-2016-10063:6.8:(AV:N/...
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2016-12-20 20:09 UTC by Mikhail Kasimov
Modified: 2017-06-08 11:04 UTC (History)
5 users (show)

See Also:
Found By: ---
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Mikhail Kasimov 2016-12-20 20:09:27 UTC
Ref: http://seclists.org/oss-sec/2016/q4/713

==============================================
Debian bug: https://bugs.debian.org/845198
Reference URL: https://security-tracker.debian.org/845198
Upstream commit: https://github.com/ImageMagick/ImageMagick/commit/2bb6941a2d557f26a2f2049ade466e118eeaab91
Upstream issue: N/A
Upstream version fixed: 6.9.5-1
==============================================
Comment 1 Swamp Workflow Management 2016-12-20 23:03:42 UTC
bugbot adjusting priority
Comment 2 Matthias Gerstner 2016-12-22 13:12:53 UTC
Sadly the upstream commit says nothing about the semantics of the moved code
block. The dependency to the code in-between the old and new location is not
obvious to me. Maybe the initialization of the colormap is the thing that
needs to be done first.

ImageMagick:

[n/a] SLE-12:Update at coders/tiff.c:1082
  the call to SetImageExtent is not present at all nothing similar to be found
[unclear] SLE-11:Update at coders/tiff.c:926
  here is a call to SetImageExtent but with zero columns/rows
[n/a] openSUSE:13.2:Update at coders/tiff.c:3671
  the call to SetImageExtent is not present at all nothing similar to be found

GraphicsMagick:

[n/a] SLE-11:Update at coders/tiff.c:1485
  the call to SetImageExtent is not present at all nothing similar to be found
[n/a] openSUSE:13.2:Update at coders/tiff.c:1627
  the call to SetImageExtent is not present at all nothing similar to be found
[n/a] openSUSE:Leap:42.1:Update at coders/tiff.c:1898
  the call to SetImageExtent is not present at all nothing similar to be found
[n/a] openSUSE:Leap:42.2:Update at coders/tiff.c:1924
  the call to SetImageExtent is not present at all nothing similar to be found
Comment 3 Johannes Segitz 2016-12-28 10:14:02 UTC
all ImageMagick issues from one oss posting were opened twice

*** This bug has been marked as a duplicate of bug 1017320 ***