Not a user yet?
Log in Register for free Suggest a product
The manufacturer Canonical has not yet set up its devicebase profile. Content such as updates, compatibilities and support may only be maintained with a delay.
Update

USN-7433-1: GraphicsMagick vulnerabilities

Ubuntu ServerUbuntu Server
Canonical
Update from patrick-devicebaseUpdate from:
patrick-devicebase (expert)

USN-7433-1: GraphicsMagick vulnerabilities
14 April 2025

Several security issues were fixed in GraphicsMagick.

Releases

  • Ubuntu 24.10
  • Ubuntu 24.04 LTS
  • Ubuntu 22.04 LTS

Packages
graphicsmagick - collection of image processing tools

Details
It was discovered that GraphicsMagick did not properly limit image
dimensions, which could lead to excessive memory consumption. An attacker
could possibly use this issue to cause a denial of service.
(CVE-2025-27795)

It was discovered that GraphicsMagick did not properly handle certain
memory operations, which could lead to a out-of-bounds memory access. An
attacker could possibly use this issue to leak sensitive information.
This issue only affected Ubuntu 24.10. (CVE-2025-27796)

Update instructions
The problem can be corrected by updating your system to the following

package versions:
Ubuntu 24.10

  • graphicsmagick - 1.4+really1.3.45-1ubuntu0.1
    Ubuntu 24.04
  • graphicsmagick - 1.4+really1.3.42-1.1ubuntu0.1~esm1
    Ubuntu 22.04
  • graphicsmagick - 1.4+really1.3.38-1ubuntu0.1+esm1
    In general, a standard system update will make all the necessary changes.
Version: 24.04 LTS Link
More updatesTo the product
Receive Important Update Messages Stay tuned for upcoming Canonical Ubuntu Server updates

More from the Operating Systems section

Was the content helpful to you?

Advertisement Advertise here?
Udemy IT certification ad