5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.004 Low
EPSS
Percentile
74.7%
Package : imagemagick
Version : 8:6.7.7.10-5+deb7u8
CVE ID : CVE-2014-9805 CVE-2014-9806 CVE-2014-9807 CVE-2014-9808
CVE-2014-9809 CVE-2014-9810 CVE-2014-9811 CVE-2014-9812
CVE-2014-9813 CVE-2014-9814 CVE-2014-9815 CVE-2014-9816
CVE-2014-9817 CVE-2014-9818 CVE-2014-9819 CVE-2014-9821
CVE-2014-9822 CVE-2014-9823 CVE-2014-9824 CVE-2014-9826
CVE-2014-9828 CVE-2014-9829 CVE-2014-9830 CVE-2014-9831
CVE-2014-9832 CVE-2014-9833 CVE-2014-9834 CVE-2014-9835
CVE-2014-9836 CVE-2014-9837 CVE-2014-9838 CVE-2014-9839
CVE-2014-9840 CVE-2014-9843 CVE-2014-9844 CVE-2014-9845
CVE-2014-9846 CVE-2014-9847 CVE-2014-9848 CVE-2014-9849
CVE-2014-9851 CVE-2014-9853 CVE-2014-9854 CVE-2014-9907
CVE-2015-8957 CVE-2015-8958 CVE-2015-8959 CVE-2016-4562
CVE-2016-4564 CVE-2016-5010 CVE-2016-5687 CVE-2016-5688
CVE-2016-5689 CVE-2016-5690 CVE-2016-5691 CVE-2016-5841
CVE-2016-5842 CVE-2016-6491 CVE-2016-6823 CVE-2016-7101
CVE-2016-7514 CVE-2016-7515 CVE-2016-7516 CVE-2016-7517
CVE-2016-7518 CVE-2016-7519 CVE-2016-7520 CVE-2016-7521
CVE-2016-7522 CVE-2016-7523 CVE-2016-7524 CVE-2016-7526
CVE-2016-7527 CVE-2016-7528 CVE-2016-7529 CVE-2016-7530
CVE-2016-7531 CVE-2016-7532 CVE-2016-7533 CVE-2016-7534
CVE-2016-7535 CVE-2016-7536 CVE-2016-7537 CVE-2016-7538
CVE-2016-7539
Debian Bug : #773980 #836172 #834501 #834183 #833744 #833730 #833735
Several issues have been discovered in ImageMagick, a popular set of
programs and libraries for image manipulation. These issues include
several problems in memory handling that can result in a denial of
service attack or in execution of arbitrary code by an attacker with
control on the image input.
For Debian 7 "Wheezy", these problems have been fixed in version
8:6.7.7.10-5+deb7u8.
We recommend that you upgrade your imagemagick packages.
Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
Attachment:
signature.asc
Description: Digital signature
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 7 | i386 | libmagick++-dev | < 8:6.7.7.10-5+deb7u8 | libmagick++-dev_8:6.7.7.10-5+deb7u8_i386.deb |
Debian | 7 | armel | imagemagick-dbg | < 8:6.7.7.10-5+deb7u8 | imagemagick-dbg_8:6.7.7.10-5+deb7u8_armel.deb |
Debian | 7 | i386 | perlmagick | < 8:6.7.7.10-5+deb7u8 | perlmagick_8:6.7.7.10-5+deb7u8_i386.deb |
Debian | 7 | armhf | libmagick++-dev | < 8:6.7.7.10-5+deb7u8 | libmagick++-dev_8:6.7.7.10-5+deb7u8_armhf.deb |
Debian | 7 | amd64 | imagemagick | < 8:6.7.7.10-5+deb7u8 | imagemagick_8:6.7.7.10-5+deb7u8_amd64.deb |
Debian | 7 | all | imagemagick-common | < 8:6.7.7.10-5+deb7u8 | imagemagick-common_8:6.7.7.10-5+deb7u8_all.deb |
Debian | 7 | i386 | libmagick++5 | < 8:6.7.7.10-5+deb7u8 | libmagick++5_8:6.7.7.10-5+deb7u8_i386.deb |
Debian | 7 | armel | libmagick++5 | < 8:6.7.7.10-5+deb7u8 | libmagick++5_8:6.7.7.10-5+deb7u8_armel.deb |
Debian | 7 | i386 | imagemagick-dbg | < 8:6.7.7.10-5+deb7u8 | imagemagick-dbg_8:6.7.7.10-5+deb7u8_i386.deb |
Debian | 7 | armhf | libmagickcore5-extra | < 8:6.7.7.10-5+deb7u8 | libmagickcore5-extra_8:6.7.7.10-5+deb7u8_armhf.deb |
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.004 Low
EPSS
Percentile
74.7%