Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 86509 - media-gfx/imagemagick - remote code execution
Summary: media-gfx/imagemagick - remote code execution
Status: RESOLVED INVALID
Alias: None
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: High normal (vote)
Assignee: Gentoo Security
URL: http://www.imagemagick.org/
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2005-03-24 05:26 UTC by Andreas Korthaus
Modified: 2005-03-24 05:32 UTC (History)
0 users

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Andreas Korthaus 2005-03-24 05:26:29 UTC 
CAN-2005-0397
CAN-2005-0759
CAN-2005-0760
CAN-2005-0761
CAN-2005-0762

I'm not sure if these problems are solved in current Version 6.2.0-8: http://www.imagemagick.org/www/Changelog.html

Suse advisory: http://www.novell.com/linux/security/advisories/2005_17_imagemagick.html

(Vulnerability Type: remote code execution)

Reproducible: Always
Steps to Reproduce:
1.
2.
3.
Comment 1 Thierry Carrez (RETIRED) gentoo-dev 2005-03-24 05:32:43 UTC 
CAN-2005-0397 was fixed in GLSA 200503-11, which forces update to 6.2.0.4
CAN-2005-0759,CAN-2005-0760,CAN-2005-0762 only affects < v6