Bug#928420: php-imagick: CVE-2019-11037

classic Classic list List threaded Threaded
4 messages Options
Reply | Threaded
Open this post in threaded view
|

Bug#928420: php-imagick: CVE-2019-11037

Salvatore Bonaccorso-4
Source: php-imagick
Version: 3.4.3~rc2-2
Severity: grave
Tags: security upstream
Forwarded: https://bugs.php.net/bug.php?id=77791

Hi,

The following vulnerability was published for php-imagick.

CVE-2019-11037[0]:
| In PHP imagick extension in versions between 3.3.0 and 3.4.4, writing
| to an array of values in ImagickKernel::fromMatrix() function did not
| check that the address will be within the allocated array. This could
| lead to out of bounds write to memory if the function is called with
| the data controlled by untrusted party.


If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2019-11037
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11037
[1] https://bugs.php.net/bug.php?id=77791

Regards,
Salvatore

Reply | Threaded
Open this post in threaded view
|

Bug#928420: php-imagick: CVE-2019-11037

Dominik George-9
Control: tag -1 + patch pending

Hi,

to prevent two of my/our packages, gosa and movim, from being removed
wiht php-imagick, I uploaded the attached NMU debdiff to DELAYED/2.

Cheers,
Nik

php-imagick_3.4.3-4.1.debdiff (6K) Download Attachment
signature.asc (919 bytes) Download Attachment
Reply | Threaded
Open this post in threaded view
|

Processed: Re: php-imagick: CVE-2019-11037

Debian Bug Tracking System
In reply to this post by Salvatore Bonaccorso-4
Processing control commands:

> tag -1 + patch pending
Bug #928420 [src:php-imagick] php-imagick: CVE-2019-11037
Added tag(s) patch and pending.

--
928420: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=928420
Debian Bug Tracking System
Contact [hidden email] with problems

Reply | Threaded
Open this post in threaded view
|

Bug#928420: marked as done (php-imagick: CVE-2019-11037)

Debian Bug Tracking System
In reply to this post by Salvatore Bonaccorso-4
Your message dated Sun, 09 Jun 2019 10:18:27 +0000
with message-id <[hidden email]>
and subject line Bug#928420: fixed in php-imagick 3.4.3-4.1
has caused the Debian Bug report #928420,
regarding php-imagick: CVE-2019-11037
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [hidden email]
immediately.)


--
928420: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=928420
Debian Bug Tracking System
Contact [hidden email] with problems

Source: php-imagick
Version: 3.4.3~rc2-2
Severity: grave
Tags: security upstream
Forwarded: https://bugs.php.net/bug.php?id=77791

Hi,

The following vulnerability was published for php-imagick.

CVE-2019-11037[0]:
| In PHP imagick extension in versions between 3.3.0 and 3.4.4, writing
| to an array of values in ImagickKernel::fromMatrix() function did not
| check that the address will be within the allocated array. This could
| lead to out of bounds write to memory if the function is called with
| the data controlled by untrusted party.


If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2019-11037
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11037
[1] https://bugs.php.net/bug.php?id=77791

Regards,
Salvatore

Source: php-imagick
Source-Version: 3.4.3-4.1

We believe that the bug you reported is fixed in the latest version of
php-imagick, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [hidden email],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Dominik George <[hidden email]> (supplier of updated php-imagick package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [hidden email])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 06 Jun 2019 11:33:10 +0200
Source: php-imagick
Binary: php-imagick php-imagick-dbgsym
Architecture: source amd64
Version: 3.4.3-4.1
Distribution: unstable
Urgency: high
Maintainer: Debian PHP PECL Maintainers <[hidden email]>
Changed-By: Dominik George <[hidden email]>
Description:
 php-imagick - Provides a wrapper to the ImageMagick library
Closes: 928420
Changes:
 php-imagick (3.4.3-4.1) unstable; urgency=high
 .
   * Non-maintainer upload.
   * Fix CVE-2019-11037. (Closes: #928420)
Checksums-Sha1:
 f78f94b6686844a9f112bc3ffc6be459668919d4 2216 php-imagick_3.4.3-4.1.dsc
 97c787dcaa3bcb695960c7cc12f5f6a907eacd81 12220 php-imagick_3.4.3-4.1.debian.tar.xz
 4d904b2980033be5cb5e0aa4d492fc647e3df80d 400356 php-imagick-dbgsym_3.4.3-4.1_amd64.deb
 c3e382e5fce8d62f512c5daaa0b388c5f54eb9dd 11485 php-imagick_3.4.3-4.1_amd64.buildinfo
 b50b22a456b98ce994bad8b039aec7512559f8a5 102288 php-imagick_3.4.3-4.1_amd64.deb
Checksums-Sha256:
 2e1630e2f39e2317a41acbe806f18186d2808f102f945d49e8dcac2ff45f1b1b 2216 php-imagick_3.4.3-4.1.dsc
 eba65b41b6a8f4ae1eda49dac880f510325cd195dadf6c58b8830b630f00d2aa 12220 php-imagick_3.4.3-4.1.debian.tar.xz
 b9cfe37115b9ab32d3b41415a933bb96e2f8997bc8d5379b0103eff343ea4138 400356 php-imagick-dbgsym_3.4.3-4.1_amd64.deb
 64f6232388c0939900e228ff3e4ce8dfa6e5f3e183febecb9042093513f9fd87 11485 php-imagick_3.4.3-4.1_amd64.buildinfo
 0e06e3c26c5717de74398000a1702eef7639ced0a94ddc3bd450a75233cce8f1 102288 php-imagick_3.4.3-4.1_amd64.deb
Files:
 c9f20343b8f763d1b1f79591ec49e95f 2216 php optional php-imagick_3.4.3-4.1.dsc
 a540c1e1df3296c60bd3a43e049f833e 12220 php optional php-imagick_3.4.3-4.1.debian.tar.xz
 659c88da665b77239dcf0b15d5c1d7f1 400356 debug optional php-imagick-dbgsym_3.4.3-4.1_amd64.deb
 5eb1be2ece0f3a66801892820bee88bc 11485 php optional php-imagick_3.4.3-4.1_amd64.buildinfo
 42b0396abaa1613bf3abddea95859d95 102288 php optional php-imagick_3.4.3-4.1_amd64.deb

-----BEGIN PGP SIGNATURE-----
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=yPIv
-----END PGP SIGNATURE-----