Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 86509

Summary: media-gfx/imagemagick - remote code execution
Product: Gentoo Security Reporter: Andreas Korthaus <akorthaus>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED INVALID    
Severity: normal    
Priority: High    
Version: unspecified   
Hardware: All   
OS: Linux   
URL: http://www.imagemagick.org/
Whiteboard:
Package list:
Runtime testing required: ---

Description Andreas Korthaus 2005-03-24 05:26:29 UTC
CAN-2005-0397
CAN-2005-0759
CAN-2005-0760
CAN-2005-0761
CAN-2005-0762

I'm not sure if these problems are solved in current Version 6.2.0-8: http://www.imagemagick.org/www/Changelog.html

Suse advisory: http://www.novell.com/linux/security/advisories/2005_17_imagemagick.html

(Vulnerability Type: remote code execution)

Reproducible: Always
Steps to Reproduce:
1.
2.
3.
Comment 1 Thierry Carrez (RETIRED) gentoo-dev 2005-03-24 05:32:43 UTC
CAN-2005-0397 was fixed in GLSA 200503-11, which forces update to 6.2.0.4
CAN-2005-0759,CAN-2005-0760,CAN-2005-0762 only affects < v6