CVE-2022-3213: A heap buffer overflow issue was found in ImageMagick. When an application processes a malformed TIFF file, it could lead to undefined behavior or a crash causing a denial of service. Patches in 6.9.12-62/7.1.0-47: https://github.com/ImageMagick/ImageMagick6/commit/1aea203eb36409ce6903b9e41fe7cb70030e8750 https://github.com/ImageMagick/ImageMagick/commit/30ccf9a0da1f47161b5935a95be854fe84e6c2a2
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=0397dd7a30a181be06269624901cb347573e3472 commit 0397dd7a30a181be06269624901cb347573e3472 Author: Andreas K. Hüttel <dilfridge@gentoo.org> AuthorDate: 2022-10-02 16:50:46 +0000 Commit: Andreas K. Hüttel <dilfridge@gentoo.org> CommitDate: 2022-10-02 16:51:23 +0000 media-gfx/imagemagick: Version bumps Bug: https://bugs.gentoo.org/871954 Signed-off-by: Andreas K. Hüttel <dilfridge@gentoo.org> media-gfx/imagemagick/Manifest | 2 + media-gfx/imagemagick/imagemagick-6.9.12.64.ebuild | 269 ++++++++++++++++++++ media-gfx/imagemagick/imagemagick-7.1.0.48.ebuild | 278 +++++++++++++++++++++ 3 files changed, 549 insertions(+)
Thanks! Please stabilize when ready.
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=45eb92c32121bfa1b228ace70d0e3da9067b5ec3 commit 45eb92c32121bfa1b228ace70d0e3da9067b5ec3 Author: Andreas K. Hüttel <dilfridge@gentoo.org> AuthorDate: 2023-02-04 16:55:11 +0000 Commit: Andreas K. Hüttel <dilfridge@gentoo.org> CommitDate: 2023-02-04 16:55:11 +0000 media-gfx/imagemagick: drop 6.9.12.59-r1, 7.1.0.44-r1 Bug: https://bugs.gentoo.org/871954 Signed-off-by: Andreas K. Hüttel <dilfridge@gentoo.org> media-gfx/imagemagick/Manifest | 2 - .../imagemagick/imagemagick-6.9.12.59-r1.ebuild | 269 -------------------- .../imagemagick/imagemagick-7.1.0.44-r1.ebuild | 278 --------------------- 3 files changed, 549 deletions(-)
All affected versions are gone.