ImageMagick security update

CentOS Errata and Security Advisory CESA-2006:0633

ImageMagick™ is an image display and manipulation tool for the X Window
System that can read and write multiple image formats.

Tavis Ormandy discovered several integer and buffer overflow flaws in the
way ImageMagick decodes XCF, SGI, and Sun bitmap graphic files. An attacker
could execute arbitrary code on a victim’s machine if they were able to
trick the victim into opening a specially crafted image file.
(CVE-2006-3743, CVE-2006-3744, CVE-2006-4144)

Users of ImageMagick should upgrade to these updated packages, which
contain backported patches and are not vulnerable to these issues.

Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2006-August/075323.html
https://lists.centos.org/pipermail/centos-announce/2006-August/075324.html
https://lists.centos.org/pipermail/centos-announce/2006-August/075344.html
https://lists.centos.org/pipermail/centos-announce/2006-August/075345.html
https://lists.centos.org/pipermail/centos-announce/2006-September/075351.html
https://lists.centos.org/pipermail/centos-announce/2006-September/075355.html
https://lists.centos.org/pipermail/centos-announce/2006-September/075358.html
https://lists.centos.org/pipermail/centos-announce/2006-September/075361.html

Affected packages:
ImageMagick
ImageMagick-c++
ImageMagick-c+±devel
ImageMagick-devel
ImageMagick-perl

Upstream details at:
https://access.redhat.com/errata/RHSA-2006:0633