All Vulnerability Reports

USN-3142-2 ImageMagick vulnerabilities


Severity

Medium

References
Description

CVEs contained in this USN include: CVE-2016-10164

Affected Pivotal Products and Versions

Severity is medium unless otherwise noted.

  • Vulnerable Cloud Foundry components individually listed here.
  • PCF Elastic Runtime:
    • 1.6.x versions prior to 1.6.71
    • 1.7.x versions prior to 1.7.56
    • 1.8.x versions prior to 1.8.35
    • 1.9.x versions prior to 1.9.13
    • 1.10.x versions prior to 1.10.1
Mitigation

Users of affected versions should apply the following mitigation:

  • The Cloud Foundry project recommends upgrading cflinuxfs2 versions listed here.
  • Releases that have fixed this issue include:
    • PCF Elastic Runtime: 1.6.71, 1.7.56, 1.8.35, 1.9.13, 1.10.1