USN-3142-2 ImageMagick vulnerabilities
Severity
Medium
References
Description
CVEs contained in this USN include: CVE-2016-10164
Affected VMware Products and Versions
Severity is medium unless otherwise noted.
- Vulnerable Cloud Foundry components individually listed here.
- PCF Elastic Runtime:
- 1.6.x versions prior to 1.6.71
- 1.7.x versions prior to 1.7.56
- 1.8.x versions prior to 1.8.35
- 1.9.x versions prior to 1.9.13
- 1.10.x versions prior to 1.10.1
Mitigation
Users of affected versions should apply the following mitigation:
- The Cloud Foundry project recommends upgrading cflinuxfs2 versions listed here.
- Releases that have fixed this issue include:
- PCF Elastic Runtime: 1.6.71, 1.7.56, 1.8.35, 1.9.13, 1.10.1