SB2024071166 - Debian update for imagemagick

Description

This security bulletin contains information about 7 secuirty vulnerabilities.

1) Heap-based buffer overflow (CVE-ID: CVE-2021-3610)

The vulnerability allows a remote attacker to crash the application.

The vulnerability exists due to an incorrect setting of the pixel array size in ReadTIFFImage() function in coders/tiff.c. A remote attacker can pass specially crafted data to the application, trigger heap-based buffer overflow and perform a denial of service attack.

2) Heap-based buffer overflow (CVE-ID: CVE-2022-1115)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a boundary error within the PushShortPixel() function in quantum-private.h when processing TIFF images. A remote attacker can pass specially crafted TIFF image to the application, trigger a heap-based buffer overflow and perform a denial of service (DoS) attack.

3) Resource management error (CVE-ID: CVE-2023-1289)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to improper management of internal resources within the application when parsing SVG files. A remote attacker can pass a specially crafted SVG file that contains many render actions and consume all available disk space on the system.

4) Heap-based buffer overflow (CVE-ID: CVE-2023-1906)

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error in MagickCore/quantum-import.c. A remote attacker can pass specially crafted data to the application, trigger a heap-based buffer overflow and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

5) Buffer overflow (CVE-ID: CVE-2023-3428)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a boundary error when processing TIFF files in coders/tiff.c. A remote attacker can pass a specially crafted TIFF file to the application, trigger memory corruption and perform a denial of service (DoS) attack.

6) Use-after-free (CVE-ID: CVE-2023-5341)

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a use-after-free error within the ReadBMPImage() function in coders/bmp.c. A remote attacker can pass a specially crafted image to the application, trigger a use-after-free error and execute arbitrary code on the system.

Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.

7) Input validation error (CVE-ID: CVE-2023-34151)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of user-supplied input. A remote attacker can pass specially crafted image to the application and perform a denial of service (DoS) attack.

Remediation

Install update from vendor's website.

References

• https://lists.debian.org/debian-security-announce/2024/msg00035.html