-------------------------------------------------------------------------- Debian Security Advisory DSA 331-1 security@debian.org http://www.debian.org/security/ Matt Zimmerman June 27th, 2003 http://www.debian.org/security/faq -------------------------------------------------------------------------- Package : imagemagick Vulnerability : insecure temporary file Problem-Type : local Debian-specific: no CVE Ids : CAN-2003-0455 imagemagick's libmagick library, under certain circumstances, creates temporary files without taking appropriate security precautions. This vulnerability could be exploited by a local user to create or overwrite files with the privileges of another user who is invoking a program using this library.
There were many changes to imagemagick in the last few months, but I can't figure out whether this bug received any attention and if it's still an issue. In the mean time, it seems like mediamagick disapeared again and imagemagick was revived. Imagemagick 5.5.8 was released but I didn't see anything about the bug in the changelog. The current stable version in gentoo is 5.5.6-r1. What happen? Can we (actually not me) bump the version and pretend we (I suppose you) don't know anything about this bug?
the error is in TemporaryFilename() which should be fixed in all 5.5.7.x releases (i verified only 5.5.7.15) i've bumped that version to stable for all archs (x86 ppc sparc alpha hppa) ... i only have x86/ppc/hppa so i cant vouch for sparc/alpha, but i dont see any bug reports in bugzilla about imagemagick that indicate problems :P
Once someone tests 5.5.7.15 ebuild on mips, 5.5.6-r1 and earlier need to be removed.
this bug is fixed on all supported architectures. closing.
