Bugzilla – Bug 1167623
VUL-1: CVE-2020-10938: GraphicsMagick: integer overflow and resultant heap-based buffer overflow in HuffmanDecodeImage in magick/compress.c
Last modified: 2020-05-04 12:16:02 UTC
CVE-2020-10938 GraphicsMagick before 1.3.35 has an integer overflow and resultant heap-based buffer overflow in HuffmanDecodeImage in magick/compress.c. References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10938 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10938 https://sourceforge.net/p/graphicsmagick/code/ci/5b4dd7c6674140a115ec9424c8d19c6a458fac3e/
Created attachment 833813 [details] GraphicsMagick-CVE-2020-10938.patch Fixed by commit 95abc2b694ceb0866f8aae94849bdf4033272035 2019-11-16 Bob Friesenhahn <bfriesen@simple.dallas.tx.us> * magick/compress.c (HuffmanDecodeImage): Fix signed overflow on range check which leads to heap overflow in 32-bit applications. Requires a relatively large file input compared with typical fuzzer files (greater than a megabyte) to trigger. Problem reported to the graphicsmagick-security mail address by Justin Tripp on 2019-11-13.
15.2: sr#788191
Package submitted to 15.1/GraphicsMagick. I believe all fixed.
This is an autogenerated message for OBS integration: This bug (1167623) was mentioned in https://build.opensuse.org/request/show/788214 15.1 / GraphicsMagick
openSUSE-SU-2020:0416-1: An update that fixes two vulnerabilities is now available. Category: security (moderate) Bug References: 1167208,1167623 CVE References: CVE-2019-12921,CVE-2020-10938 Sources used: openSUSE Leap 15.1 (src): GraphicsMagick-1.3.29-lp151.4.17.1
openSUSE-SU-2020:0429-1: An update that fixes two vulnerabilities is now available. Category: security (moderate) Bug References: 1167208,1167623 CVE References: CVE-2019-12921,CVE-2020-10938 Sources used: openSUSE Backports SLE-15-SP1 (src): GraphicsMagick-1.3.29-bp151.5.12.1
Done