GraphicsMagick 1.3.26 has a heap-based buffer overflow vulnerability in the function GetStyleTokens in coders/svg.c:314:12.
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "ubuntu_priority": "medium", "binaries": [ { "libgraphicsmagick3-dbgsym": "1.3.18-1ubuntu3.1+esm3", "graphicsmagick": "1.3.18-1ubuntu3.1+esm3", "libgraphicsmagick++3": "1.3.18-1ubuntu3.1+esm3", "libgraphicsmagick++1-dev": "1.3.18-1ubuntu3.1+esm3", "libgraphicsmagick++3-dbgsym": "1.3.18-1ubuntu3.1+esm3", "graphicsmagick-dbg": "1.3.18-1ubuntu3.1+esm3", "graphicsmagick-libmagick-dev-compat": "1.3.18-1ubuntu3.1+esm3", "libgraphicsmagick1-dev": "1.3.18-1ubuntu3.1+esm3", "graphicsmagick-dbgsym": "1.3.18-1ubuntu3.1+esm3", "libgraphicsmagick1-dev-dbgsym": "1.3.18-1ubuntu3.1+esm3", "graphicsmagick-imagemagick-compat": "1.3.18-1ubuntu3.1+esm3", "libgraphics-magick-perl": "1.3.18-1ubuntu3.1+esm3", "libgraphics-magick-perl-dbgsym": "1.3.18-1ubuntu3.1+esm3", "libgraphicsmagick3": "1.3.18-1ubuntu3.1+esm3", "libgraphicsmagick++1-dev-dbgsym": "1.3.18-1ubuntu3.1+esm3" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "graphicsmagick": "1.3.23-1ubuntu0.3", "graphicsmagick-dbg": "1.3.23-1ubuntu0.3", "libgraphicsmagick++1-dev": "1.3.23-1ubuntu0.3", "graphicsmagick-libmagick-dev-compat": "1.3.23-1ubuntu0.3", "libgraphicsmagick1-dev": "1.3.23-1ubuntu0.3", "graphicsmagick-dbgsym": "1.3.23-1ubuntu0.3", "libgraphicsmagick1-dev-dbgsym": "1.3.23-1ubuntu0.3", "graphicsmagick-imagemagick-compat": "1.3.23-1ubuntu0.3", "libgraphicsmagick-q16-3-dbgsym": "1.3.23-1ubuntu0.3", "libgraphics-magick-perl": "1.3.23-1ubuntu0.3", "libgraphics-magick-perl-dbgsym": "1.3.23-1ubuntu0.3", "libgraphicsmagick++-q16-12": "1.3.23-1ubuntu0.3", "libgraphicsmagick++-q16-12-dbgsym": "1.3.23-1ubuntu0.3", "libgraphicsmagick++1-dev-dbgsym": "1.3.23-1ubuntu0.3", "libgraphicsmagick-q16-3": "1.3.23-1ubuntu0.3" } ] }