Debian Security Advisory

DSA-5288-1 graphicsmagick -- security update

Date Reported:
25 Nov 2022
Affected Packages:
Security database references:
In Mitre's CVE dictionary: CVE-2022-1270.
More information:

It was discovered that a buffer overflow in GraphicsMagick, a collection of image processing tools, could potentially result in the execution of arbitrary code when processing a malformed MIFF image.

For the stable distribution (bullseye), this problem has been fixed in version 1.4+really1.3.36+hg16481-2+deb11u1.

We recommend that you upgrade your graphicsmagick packages.

For the detailed security status of graphicsmagick please refer to its security tracker page at: