{"affected":[{"ecosystem_specific":{"binaries":[{"ImageMagick":"7.0.7.34-3.34.3","ImageMagick-devel":"7.0.7.34-3.34.3","libMagick++-7_Q16HDRI4":"7.0.7.34-3.34.3","libMagick++-devel":"7.0.7.34-3.34.3","libMagickCore-7_Q16HDRI6":"7.0.7.34-3.34.3","libMagickWand-7_Q16HDRI6":"7.0.7.34-3.34.3"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Desktop Applications 15","name":"ImageMagick","purl":"pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"7.0.7.34-3.34.3"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"perl-PerlMagick":"7.0.7.34-3.34.3"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Development Tools 15","name":"ImageMagick","purl":"pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"7.0.7.34-3.34.3"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for ImageMagick fixes the following issues:\n\nSecurity issues fixed:\n\n- CVE-2018-18024: Fixed an infinite loop in the ReadBMPImage function.\n  Remote attackers could leverage this vulnerability to cause a denial\n  of service via a crafted bmp file. (bsc#1111069)\n- CVE-2018-18016: Fixed a memory leak in WritePCXImage (bsc#1111072).\n- CVE-2018-17966: Fixed a memory leak in WritePDBImage (bsc#1110746).\n\nNon security issues fixed:\n\n- Fixed -morphology EdgeIn output (bsc#1106254)\n","id":"SUSE-SU-2018:3753-1","modified":"2018-11-13T07:37:06Z","published":"2018-11-13T07:37:06Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2018/suse-su-20183753-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1106254"},{"type":"REPORT","url":"https://bugzilla.suse.com/1110746"},{"type":"REPORT","url":"https://bugzilla.suse.com/1111069"},{"type":"REPORT","url":"https://bugzilla.suse.com/1111072"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2018-17966"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2018-18016"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2018-18024"}],"related":["CVE-2018-17966","CVE-2018-18016","CVE-2018-18024"],"summary":"Security update for ImageMagick","upstream":["CVE-2018-17966","CVE-2018-18016","CVE-2018-18024"]}