USN-3681-1

See a problem?
Source
https://ubuntu.com/security/notices/USN-3681-1
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-3681-1.json
JSON Data
https://api.osv.dev/v1/vulns/USN-3681-1
Related
Published
2018-06-12T11:40:14.599634Z
Modified
2018-06-12T11:40:14.599634Z
Summary
imagemagick vulnerabilities
Details

It was discovered that ImageMagick incorrectly handled certain malformed image files. If a user or automated system using ImageMagick were tricked into opening a specially crafted image, an attacker could exploit this to cause a denial of service or possibly execute code with the privileges of the user invoking the program.

References

Affected packages

Ubuntu:14.04:LTS / imagemagick

Package

Name
imagemagick
Purl
pkg:deb/ubuntu/imagemagick@8:6.7.7.10-6ubuntu3.11?arch=src?distro=trusty

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8:6.7.7.10-6ubuntu3.11

Affected versions

8:6.*

8:6.7.7.10-5ubuntu3
8:6.7.7.10-5ubuntu4
8:6.7.7.10-6ubuntu1
8:6.7.7.10-6ubuntu2
8:6.7.7.10-6ubuntu3
8:6.7.7.10-6ubuntu3.1
8:6.7.7.10-6ubuntu3.2
8:6.7.7.10-6ubuntu3.3
8:6.7.7.10-6ubuntu3.4
8:6.7.7.10-6ubuntu3.5
8:6.7.7.10-6ubuntu3.6
8:6.7.7.10-6ubuntu3.7
8:6.7.7.10-6ubuntu3.8
8:6.7.7.10-6ubuntu3.9

Ecosystem specific 

{
    "availability": "No subscription required",
    "binaries": [
        {
            "libmagickcore-dev": "8:6.7.7.10-6ubuntu3.11",
            "imagemagick-dbgsym": "8:6.7.7.10-6ubuntu3.11",
            "imagemagick-doc": "8:6.7.7.10-6ubuntu3.11",
            "libmagick++-dev-dbgsym": "8:6.7.7.10-6ubuntu3.11",
            "libmagick++5-dbgsym": "8:6.7.7.10-6ubuntu3.11",
            "libmagick++-dev": "8:6.7.7.10-6ubuntu3.11",
            "libmagickwand5-dbgsym": "8:6.7.7.10-6ubuntu3.11",
            "libmagickcore5-dbgsym": "8:6.7.7.10-6ubuntu3.11",
            "imagemagick": "8:6.7.7.10-6ubuntu3.11",
            "libmagickwand-dev-dbgsym": "8:6.7.7.10-6ubuntu3.11",
            "libmagickwand5": "8:6.7.7.10-6ubuntu3.11",
            "libmagickwand-dev": "8:6.7.7.10-6ubuntu3.11",
            "libmagickcore5-extra": "8:6.7.7.10-6ubuntu3.11",
            "libmagickcore5-extra-dbgsym": "8:6.7.7.10-6ubuntu3.11",
            "libmagickcore5": "8:6.7.7.10-6ubuntu3.11",
            "imagemagick-dbg": "8:6.7.7.10-6ubuntu3.11",
            "libmagick++5": "8:6.7.7.10-6ubuntu3.11",
            "libmagickcore-dev-dbgsym": "8:6.7.7.10-6ubuntu3.11",
            "perlmagick": "8:6.7.7.10-6ubuntu3.11",
            "perlmagick-dbgsym": "8:6.7.7.10-6ubuntu3.11",
            "imagemagick-common": "8:6.7.7.10-6ubuntu3.11"
        }
    ]
}

Ubuntu:16.04:LTS / imagemagick

Package

Name
imagemagick
Purl
pkg:deb/ubuntu/imagemagick@8:6.8.9.9-7ubuntu5.11?arch=src?distro=xenial

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8:6.8.9.9-7ubuntu5.11

Affected versions

8:6.*

8:6.8.9.9-5ubuntu2
8:6.8.9.9-6
8:6.8.9.9-6build1
8:6.8.9.9-7
8:6.8.9.9-7ubuntu1
8:6.8.9.9-7ubuntu2
8:6.8.9.9-7ubuntu3
8:6.8.9.9-7ubuntu4
8:6.8.9.9-7ubuntu5
8:6.8.9.9-7ubuntu5.1
8:6.8.9.9-7ubuntu5.2
8:6.8.9.9-7ubuntu5.3
8:6.8.9.9-7ubuntu5.4
8:6.8.9.9-7ubuntu5.5
8:6.8.9.9-7ubuntu5.6
8:6.8.9.9-7ubuntu5.7
8:6.8.9.9-7ubuntu5.8
8:6.8.9.9-7ubuntu5.9

Ecosystem specific 

{
    "availability": "No subscription required",
    "binaries": [
        {
            "libmagickcore-6.q16-2": "8:6.8.9.9-7ubuntu5.11",
            "libmagickcore-dev": "8:6.8.9.9-7ubuntu5.11",
            "libmagickwand-6.q16-dev-dbgsym": "8:6.8.9.9-7ubuntu5.11",
            "libimage-magick-q16-perl": "8:6.8.9.9-7ubuntu5.11",
            "libmagick++-dev": "8:6.8.9.9-7ubuntu5.11",
            "libimage-magick-perl": "8:6.8.9.9-7ubuntu5.11",
            "libmagickwand-6.q16-dev": "8:6.8.9.9-7ubuntu5.11",
            "libmagickcore-6-arch-config-dbgsym": "8:6.8.9.9-7ubuntu5.11",
            "libmagickwand-dev": "8:6.8.9.9-7ubuntu5.11",
            "libmagickcore-6.q16-2-extra": "8:6.8.9.9-7ubuntu5.11",
            "libmagickcore-6.q16-dev": "8:6.8.9.9-7ubuntu5.11",
            "imagemagick-6.q16-dbgsym": "8:6.8.9.9-7ubuntu5.11",
            "perlmagick": "8:6.8.9.9-7ubuntu5.11",
            "libimage-magick-q16-perl-dbgsym": "8:6.8.9.9-7ubuntu5.11",
            "libmagickwand-6-headers": "8:6.8.9.9-7ubuntu5.11",
            "libmagickcore-6-headers": "8:6.8.9.9-7ubuntu5.11",
            "libmagick++-6-headers": "8:6.8.9.9-7ubuntu5.11",
            "libmagickcore-6.q16-2-dbgsym": "8:6.8.9.9-7ubuntu5.11",
            "imagemagick-dbgsym": "8:6.8.9.9-7ubuntu5.11",
            "libmagickwand-6.q16-2-dbgsym": "8:6.8.9.9-7ubuntu5.11",
            "libmagick++-6.q16-5v5": "8:6.8.9.9-7ubuntu5.11",
            "imagemagick-doc": "8:6.8.9.9-7ubuntu5.11",
            "libmagickcore-6.q16-dev-dbgsym": "8:6.8.9.9-7ubuntu5.11",
            "libmagickwand-6.q16-2": "8:6.8.9.9-7ubuntu5.11",
            "imagemagick": "8:6.8.9.9-7ubuntu5.11",
            "libmagickcore-6-arch-config": "8:6.8.9.9-7ubuntu5.11",
            "imagemagick-6.q16": "8:6.8.9.9-7ubuntu5.11",
            "imagemagick-dbg": "8:6.8.9.9-7ubuntu5.11",
            "libmagick++-6.q16-5v5-dbgsym": "8:6.8.9.9-7ubuntu5.11",
            "libmagick++-6.q16-dev": "8:6.8.9.9-7ubuntu5.11",
            "libmagickcore-6.q16-2-extra-dbgsym": "8:6.8.9.9-7ubuntu5.11",
            "libmagick++-6.q16-dev-dbgsym": "8:6.8.9.9-7ubuntu5.11",
            "imagemagick-common": "8:6.8.9.9-7ubuntu5.11"
        }
    ]
}

Ubuntu:18.04:LTS / imagemagick

Package

Name
imagemagick
Purl
pkg:deb/ubuntu/imagemagick@8:6.9.7.4+dfsg-16ubuntu6.2?arch=src?distro=bionic

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8:6.9.7.4+dfsg-16ubuntu6.2

Affected versions

8:6.*

8:6.9.7.4+dfsg-16ubuntu2
8:6.9.7.4+dfsg-16ubuntu3
8:6.9.7.4+dfsg-16ubuntu4
8:6.9.7.4+dfsg-16ubuntu5
8:6.9.7.4+dfsg-16ubuntu6

Ecosystem specific 

{
    "availability": "No subscription required",
    "binaries": [
        {
            "imagemagick-common": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "libmagickcore-6.q16hdri-3": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "libimage-magick-q16-perl": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "libmagick++-6.q16hdri-7-dbgsym": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "libimage-magick-q16hdri-perl": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "libmagick++-6.q16-7-dbgsym": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "libmagick++-dev": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "imagemagick-6-common": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "imagemagick-6.q16hdri-dbgsym": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "libimage-magick-perl": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "libmagickwand-6.q16-3-dbgsym": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "libmagick++-6.q16hdri-dev": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "imagemagick-6.q16-dbgsym": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "libmagickwand-dev": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "imagemagick-6-doc": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "libmagickcore-6.q16-dev": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "libmagickwand-6.q16-dev": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "libmagickcore-6.q16-3": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "libmagickcore-6.q16-3-extra-dbgsym": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "libmagickwand-6.q16-3": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "libmagickcore-6.q16hdri-3-extra-dbgsym": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "perlmagick": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "libimage-magick-q16-perl-dbgsym": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "libmagickcore-6.q16hdri-dev": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "libmagickwand-6-headers": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "libmagick++-6.q16hdri-7": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "libmagick++-6-headers": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "libmagickcore-6.q16hdri-3-dbgsym": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "libmagick++-6.q16-7": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "libmagickwand-6.q16hdri-dev": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "libmagickcore-6-headers": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "libmagickcore-6.q16hdri-3-extra": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "imagemagick-doc": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "libmagickwand-6.q16hdri-3": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "imagemagick": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "libmagickcore-6-arch-config": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "imagemagick-6.q16": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "libmagickcore-6.q16-3-dbgsym": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "libmagickcore-6.q16-3-extra": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "libmagick++-6.q16-dev": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "libmagickwand-6.q16hdri-3-dbgsym": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "imagemagick-6.q16hdri": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "libimage-magick-q16hdri-perl-dbgsym": "8:6.9.7.4+dfsg-16ubuntu6.2",
            "libmagickcore-dev": "8:6.9.7.4+dfsg-16ubuntu6.2"
        }
    ]
}