An update for GraphicsMagick is now available for openEuler-20.03-LTS-SP1,openEuler-20.03-LTS-SP3 and openEuler-22.03-LTS Security Advisory openeuler-security@openeuler.org openEuler security committee openEuler-SA-2022-1760 Final 1.0 1.0 2022-07-22 Initial 2022-07-22 2022-07-22 openEuler SA Tool V1.0 2022-07-22 GraphicsMagick security update An update for GraphicsMagick is now available for openEuler-20.03-LTS-SP1,openEuler-20.03-LTS-SP3 and openEuler-22.03-LTS. GraphicsMagick is the swiss army knife of image processing. Comprised of 267K physical lines (according to David A. Wheeler's SLOCCount) of source code in the base package (or 1,225K including 3rd party libraries) it provides a robust and efficient collection of tools and libraries which support reading, writing, and manipulating an image in over 89 major formats including important formats like DPX, GIF, JPEG, JPEG-2000, PNG, PDF, PNM, TIFF, and WebP. Security Fix(es): In GraphicsMagick, a heap buffer overflow was found when parsing MIFF. (CVE-2022-1270) An update for GraphicsMagick is now available for openEuler-20.03-LTS-SP1,openEuler-20.03-LTS-SP3 and openEuler-22.03-LTS. openEuler Security has rated this update as having a security impact of high. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section. High GraphicsMagick https://www.openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2022-1760 https://www.openeuler.org/en/security/cve/detail.html?id=CVE-2022-1270 https://nvd.nist.gov/vuln/detail/CVE-2022-1270 openEuler-20.03-LTS-SP1 openEuler-20.03-LTS-SP3 openEuler-22.03-LTS GraphicsMagick-devel-1.3.30-10.oe1.aarch64.rpm GraphicsMagick-c++-devel-1.3.30-10.oe1.aarch64.rpm GraphicsMagick-c++-1.3.30-10.oe1.aarch64.rpm GraphicsMagick-debugsource-1.3.30-10.oe1.aarch64.rpm GraphicsMagick-debuginfo-1.3.30-10.oe1.aarch64.rpm GraphicsMagick-perl-1.3.30-10.oe1.aarch64.rpm GraphicsMagick-1.3.30-10.oe1.aarch64.rpm GraphicsMagick-1.3.30-10.oe1.aarch64.rpm GraphicsMagick-devel-1.3.30-10.oe1.aarch64.rpm GraphicsMagick-c++-1.3.30-10.oe1.aarch64.rpm GraphicsMagick-debugsource-1.3.30-10.oe1.aarch64.rpm GraphicsMagick-c++-devel-1.3.30-10.oe1.aarch64.rpm GraphicsMagick-perl-1.3.30-10.oe1.aarch64.rpm GraphicsMagick-debuginfo-1.3.30-10.oe1.aarch64.rpm GraphicsMagick-c++-1.3.30-9.oe2203.aarch64.rpm GraphicsMagick-debuginfo-1.3.30-9.oe2203.aarch64.rpm GraphicsMagick-c++-devel-1.3.30-9.oe2203.aarch64.rpm GraphicsMagick-1.3.30-9.oe2203.aarch64.rpm GraphicsMagick-devel-1.3.30-9.oe2203.aarch64.rpm GraphicsMagick-debugsource-1.3.30-9.oe2203.aarch64.rpm GraphicsMagick-perl-1.3.30-9.oe2203.aarch64.rpm GraphicsMagick-help-1.3.30-10.oe1.noarch.rpm GraphicsMagick-help-1.3.30-10.oe1.noarch.rpm GraphicsMagick-help-1.3.30-9.oe2203.noarch.rpm GraphicsMagick-1.3.30-10.oe1.src.rpm GraphicsMagick-1.3.30-10.oe1.src.rpm GraphicsMagick-1.3.30-9.oe2203.src.rpm GraphicsMagick-debuginfo-1.3.30-10.oe1.x86_64.rpm GraphicsMagick-devel-1.3.30-10.oe1.x86_64.rpm GraphicsMagick-perl-1.3.30-10.oe1.x86_64.rpm GraphicsMagick-c++-devel-1.3.30-10.oe1.x86_64.rpm GraphicsMagick-1.3.30-10.oe1.x86_64.rpm GraphicsMagick-debugsource-1.3.30-10.oe1.x86_64.rpm GraphicsMagick-c++-1.3.30-10.oe1.x86_64.rpm GraphicsMagick-debuginfo-1.3.30-10.oe1.x86_64.rpm GraphicsMagick-devel-1.3.30-10.oe1.x86_64.rpm GraphicsMagick-perl-1.3.30-10.oe1.x86_64.rpm GraphicsMagick-c++-1.3.30-10.oe1.x86_64.rpm GraphicsMagick-debugsource-1.3.30-10.oe1.x86_64.rpm GraphicsMagick-1.3.30-10.oe1.x86_64.rpm GraphicsMagick-c++-devel-1.3.30-10.oe1.x86_64.rpm GraphicsMagick-perl-1.3.30-9.oe2203.x86_64.rpm GraphicsMagick-c++-1.3.30-9.oe2203.x86_64.rpm GraphicsMagick-devel-1.3.30-9.oe2203.x86_64.rpm GraphicsMagick-debuginfo-1.3.30-9.oe2203.x86_64.rpm GraphicsMagick-1.3.30-9.oe2203.x86_64.rpm GraphicsMagick-debugsource-1.3.30-9.oe2203.x86_64.rpm GraphicsMagick-c++-devel-1.3.30-9.oe2203.x86_64.rpm In GraphicsMagick, a heap buffer overflow was found when parsing MIFF. 2022-07-22 CVE-2022-1270 openEuler-20.03-LTS-SP1 openEuler-20.03-LTS-SP3 openEuler-22.03-LTS High 7.3 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L GraphicsMagick security update 2022-07-22 https://www.openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2022-1760