ELA-345-1 imagemagick security update

multiple vulnerabilities

2021-01-12
Packageimagemagick
Version8:6.8.9.9-5+deb8u22
Related CVEs CVE-2020-19667 CVE-2020-25665 CVE-2020-25674 CVE-2020-27560 CVE-2020-27750 CVE-2020-27760 CVE-2020-27763 CVE-2020-27765 CVE-2020-27773 CVE-2020-29599

Several security vulnerabilities were found in ImageMagick, a suite of image manipulation programs. An attacker could cause denial of service and execution of arbitrary code when a crafted image file is processed.

For Debian 8 jessie, these problems have been fixed in version 8:6.8.9.9-5+deb8u22.

We recommend that you upgrade your imagemagick packages.

Further information about Extended LTS security advisories can be found at: https://deb.freexian.com/extended-lts/