[Epel-packagers-sig] [Bug 2185715] New: CVE-2023-1906 ImageMagick: heap-based buffer overflow in ImportMultiSpectralQuantum() in MagickCore/quantum-import.c [fedora-all]

10 Apr 2023


      https://bugzilla.redhat.com/show_bug.cgi?id=2185715
Bug ID: 2185715
           Summary: CVE-2023-1906 ImageMagick: heap-based buffer overflow
                    in ImportMultiSpectralQuantum() in
                    MagickCore/quantum-import.c [fedora-all]
           Product: Fedora
           Version: 37
            Status: NEW
         Component: ImageMagick
          Keywords: Security, SecurityTracking
          Severity: medium
          Priority: medium
          Assignee: luya_tfz@thefinalzone.net
          Reporter: trathi@redhat.com
        QA Contact: extras-qa@fedoraproject.org
                CC: blaise@gmail.com, davide@cavalca.name,
                    epel-packagers-sig@lists.fedoraproject.org,
                    fedora@famillecollet.com, luya_tfz@thefinalzone.net,
                    michel@michel-slm.name, ngompa13@gmail.com,
                    pampelmuse@gmx.at, sergio@serjux.com
  Target Milestone: ---
    Classification: Fedora
More information about this security flaw is available in the following bug:
http://bugzilla.redhat.com/show_bug.cgi?id=2185714
Disclaimer: Community trackers are created by Red Hat Product Security team on
a best effort basis. Package maintainers are required to ascertain if the flaw
indeed affects their package, before starting the update process.
-- 
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2185715

2024

2023

2022

2021

[Epel-packagers-sig] [Bug 2185715] New: CVE-2023-1906 ImageMagick: heap-based buffer overflow in ImportMultiSpectralQuantum() in MagickCore/quantum-import.c [fedora-all]