Linux Distros Unpatched Vulnerability : CVE-2016-5118

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The OpenBlob function in blob.c in GraphicsMagick before 1.3.24 and ImageMagick allows remote attackers to execute arbitrary code via a | pipe character at the...

K82747025: GraphicsMagick vulnerability CVE-2016-5118

Security Advisory Description The OpenBlob function in blob.c in GraphicsMagick before 1.3.24 and ImageMagick allows remote attackers to execute arbitrary code via a | pipe character at the start of a filename. CVE-2016-5118 Impact A remote attacker may be able to execute arbitrary code on the...

Slackware: Security Advisory (SSA:2016-152-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mageia: Security Advisory (MGASA-2016-0257)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2016:1610-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for ImageMagick (EulerOS-SA-2016-1029)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE: Security Advisory for GraphicsMagick (openSUSE-SU-2016:3060-1)

The remote host is missing an update for the Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Debian DSA-3746-1 : graphicsmagick - security update (ImageTragick)

Several vulnerabilities have been discovered in GraphicsMagick, a collection of image processing tool, which can cause denial of service attacks, remote file deletion, and remote command execution. This security update removes the full support of PLT/Gnuplot decoder to prevent Gnuplot-shell based...

[SECURITY] [DSA 3746-1] graphicsmagick security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3746-1 [email protected] https://www.debian.org/security/ Luciano Bello December 24, 2016 https://www.debian.org/security/faq -...

DSA-3746-1 graphicsmagick - security update

Bulletin has no description...

Debian: Security Advisory (DSA-3746-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE Security Update : GraphicsMagick (openSUSE-2016-1430)

This update for GraphicsMagick fixes the following issues : - a possible shell execution attack was fixed. if the first character of an input filename for 'convert' was a '|' then the remainder of the filename was passed to the shell CVE-2016-5118, boo982178 - Maliciously crafted pnm files could...

Amazon Linux: Security Advisory (ALAS-2016-717)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES11 Security Update : ImageMagick (SUSE-SU-2016:1610-1)

This update for ImageMagick fixes the following issues : - CVE-2016-5118: popen shell vulnerability via filenames bsc982178 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and...

Updated imagemagick packages fix security vulnerabilities

Updated imagemagick package fixes security vulnerabilities: The OpenBlob function in blob.c in ImageMagick allows remote attackers to execute arbitrary code via a | pipe character at the start of a filename CVE-2016-5118. Integer overflow in MagickCore/profile.c CVE-2016-5841. Buffer overread in...

F5 Networks BIG-IP : GraphicsMagick vulnerability (K82747025)

The OpenBlob function in blob.c in GraphicsMagick before 1.3.24 and ImageMagick allows remote attackers to execute arbitrary code via a | pipe character at the start of a filename. CVE-2016-5118 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

openSUSE Security Update : ImageMagick (openSUSE-2016-757)

This update for ImageMagick fixes the following issues : This security issue was fixed : - CVE-2016-5118: Prevent code execution via popen bsc982178 This non-security issue was fixed : - Fix encoding of /Title in generated PDFs. bsc867943 This update was imported from the SUSE:SLE-12:Update updat...

Amazon Linux AMI : ImageMagick (ALAS-2016-716)

It was discovered that ImageMagick did not properly sanitize certain input before using it to invoke processes. A remote attacker could create a specially crafted image that, when processed by an application using ImageMagick or an unsuspecting user using the ImageMagick utilities, would lead to...

Amazon Linux AMI : GraphicsMagick (ALAS-2016-717)

It was discovered that GraphicsMagick did not properly sanitize certain input before using it to invoke processes. A remote attacker could create a specially crafted image that, when processed by an application using GraphicsMagick or an unsuspecting user using the GraphicsMagick utilities, would...

Security update for ImageMagick (important)

This update for ImageMagick fixes the following issues: This security issue was fixed: - CVE-2016-5118: Prevent code execution via popen bsc982178 This non-security issue was fixed: - Fix encoding of /Title in generated PDFs. bsc867943 This update was imported from the SUSE:SLE-12:Update update...