9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.06 Low
EPSS
Percentile
92.7%
ImageMagick is an image display and manipulation tool for the X Window
System that can read and write multiple image formats.
An integer overflow flaw, leading to a heap-based buffer overflow, was
found in the ImageMagick routine responsible for creating X11 images. An
attacker could create a specially-crafted image file that, when opened by a
victim, would cause ImageMagick to crash or, potentially, execute arbitrary
code. (CVE-2009-1882)
This update also fixes the following bug:
Users of ImageMagick are advised to upgrade to these updated packages,
which contain backported patches to correct these issues. All running
instances of ImageMagick must be restarted for this update to take effect.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 5 | s390x | imagemagick-perl | < 6.2.8.0-4.el5_5.2 | ImageMagick-perl-6.2.8.0-4.el5_5.2.s390x.rpm |
RedHat | 5 | s390x | imagemagick | < 6.2.8.0-4.el5_5.2 | ImageMagick-6.2.8.0-4.el5_5.2.s390x.rpm |
RedHat | 5 | s390 | imagemagick | < 6.2.8.0-4.el5_5.2 | ImageMagick-6.2.8.0-4.el5_5.2.s390.rpm |
RedHat | 5 | ppc | imagemagick-perl | < 6.2.8.0-4.el5_5.2 | ImageMagick-perl-6.2.8.0-4.el5_5.2.ppc.rpm |
RedHat | 5 | s390x | imagemagick-devel | < 6.2.8.0-4.el5_5.2 | ImageMagick-devel-6.2.8.0-4.el5_5.2.s390x.rpm |
RedHat | 5 | ppc64 | imagemagick-c++ | < 6.2.8.0-4.el5_5.2 | ImageMagick-c++-6.2.8.0-4.el5_5.2.ppc64.rpm |
RedHat | 5 | src | imagemagick | < 6.2.8.0-4.el5_5.2 | ImageMagick-6.2.8.0-4.el5_5.2.src.rpm |
RedHat | 5 | s390x | imagemagick-c++ | < 6.2.8.0-4.el5_5.2 | ImageMagick-c++-6.2.8.0-4.el5_5.2.s390x.rpm |
RedHat | 5 | i386 | imagemagick-perl | < 6.2.8.0-4.el5_5.2 | ImageMagick-perl-6.2.8.0-4.el5_5.2.i386.rpm |
RedHat | 5 | ppc | imagemagick | < 6.2.8.0-4.el5_5.2 | ImageMagick-6.2.8.0-4.el5_5.2.ppc.rpm |