Your submission was sent successfully! Close

You have successfully unsubscribed! Close

USN-5855-2: ImageMagick vulnerabilities

15 March 2023

Several security issues were fixed in ImageMagick.

Reduce your security exposure

Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines.

Learn more about Ubuntu Pro

Releases

Packages

  • imagemagick - Image manipulation programs and library

Details

USN-5855-1 fixed a vulnerability in ImageMagick. This update provides
the corresponding update for Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, and Ubuntu
22.10.

Original advisory details:

It was discovered that ImageMagick incorrectly handled certain PNG images.
If a user or automated system were tricked into opening a specially crafted
PNG file, an attacker could use this issue to cause ImageMagick to stop
responding, resulting in a denial of service, or possibly obtain the
contents of arbitrary files by including them into images.

Reduce your security exposure

Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines.

Learn more about Ubuntu Pro

Related notices

  • USN-5855-1: imagemagick-6-common, libmagick++-6.q16hdri-7, libmagickcore-6.q16hdri-dev, libimage-magick-perl, imagemagick-6.q16hdri, libmagickcore-6.q16-3-extra, libmagickcore-6.q16hdri-3, imagemagick-6.q16, libmagickcore-6-arch-config, libmagickwand-6.q16-dev, imagemagick-doc, libmagickwand-6.q16hdri-3, imagemagick-common, libmagickcore-6.q16-dev, libmagick++-6.q16-7, libmagick++-6-headers, libmagickcore-6-headers, libmagickcore-6.q16-3, imagemagick, libmagickcore-6.q16hdri-3-extra, libmagick++-6.q16-dev, libmagickwand-dev, imagemagick-6-doc, libmagick++-6.q16hdri-dev, libimage-magick-q16-perl, libmagickwand-6-headers, libmagickcore-dev, perlmagick, libmagick++-dev, libimage-magick-q16hdri-perl, libmagickwand-6.q16hdri-dev, libmagickwand-6.q16-3