USN-3142-1 ImageMagick vulnerabilities


Severity

Medium

References
Affected Pivotal Products and Versions

Severity is medium unless otherwise noted.

  • Vulnerable cflinuxfs2 versions listed here.
  • PCF Elastic Runtime:
    • 1.6.x versions prior to 1.6.60
    • 1.7.x versions prior to 1.7.41
    • 1.8.x versions prior to 1.8.23
    • 1.9.x versions prior to 1.9.1
Mitigation

Users of affected versions should apply the following mitigation:

  • The Cloud Foundry team recommends upgrading to cflinuxfs2 versions listed here.
  • Upgrade PCF Elastic Runtime:
    • 1.6.x versions to 1.6.60 or later
    • 1.7.x versions to 1.7.41 or later
    • 1.8.x versions to 1.8.23 or later
    • 1.9.x versions to 1.9.1 or later