LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Sponsored link

Vyatta – Linux & Open Source Alternative to Cisco – Advanced Routing, Firewall, VPN, QoS..
Free Download ->

Recent Features

LWN.net Weekly Edition for November 20, 2008

MinGW and why Linux users should care

LWN.net Weekly Edition for November 13, 2008

NLUUG/ELCE: Embedded devices and free software

The sad story of the em28xx driver

Printable page
Weekly edition Kernel Security Distributions Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ

ImageMagick: buffer overflow

Package(s):imagemagick CVE #(s):CVE-2007-0770
Created:February 12, 2007 Updated:February 16, 2007
Description: Vladimir Nadvornik discovered a buffer overflow in GraphicsMagick and ImageMagick allows user-assisted attackers to cause a denial of service and possibly execute execute arbitrary code via a PALM image that is not properly handled by the ReadPALMImage function in coders/palm.c.
Alerts:
SuSE SUSE-SR:2007:003 2007-02-16
Ubuntu USN-422-1 2007-02-15
Debian DSA-1260-1 2007-02-14
Mandriva MDKSA-2007:041 2006-02-09
(Log in to post comments)

ImageMagick: buffer overflow

Posted Feb 15, 2007 9:52 UTC (Thu) by mjcox@redhat.com (subscriber, #31775) [Link]

Note this CVE was allocated to those distributions that issued updates with an incomplete patch for CVE-2006-5456. Distributions that included a complete patch for CVE-2006-5456 are not vulnerable to CVE-2007-0770.

Copyright © 2008, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds