13 matches found
Linux Distros Unpatched Vulnerability : CVE-2010-4167
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Untrusted search path vulnerability in configure.c in ImageMagick before 6.6.5-5, when MAGICKCOREINSTALLEDSUPPORT is defined, allows local users to gain...
RHEL 4 : imagemagick (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 4 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - ImageMagick: configuration files read from $CWD may allow arbitrary code execution CVE-2010-4167 Note that Nessus h...
Oracle Linux 5 : ImageMagick (ELSA-2012-0301)
The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2012-0301 advisory. - Add fix for CVE-2010-4167 767142 Fix assertion failed when using 'identify -verbose' when theres no image information available 502626 Fix memory allocation...
Oracle Linux 6 : ImageMagick (ELSA-2012-0544)
The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2012-0544 advisory. - Add fix for CVE-2010-4167 - Add fix for CVE-2012-0247 CVE-2012-0248 CVE-2012-1185 CVE-2012-1186 Tenable has extracted the preceding description block...
Mandriva Update for imagemagick MDVSA-2012:077 (imagemagick)
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Moderate: Red Hat Security Advisory: ImageMagick security update
Updated ImageMagick packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings,...
ImageMagick security update
6.5.4.7-6 - Add fix for CVE-2010-4167 - Add fix for CVE-2012-0247 CVE-2012-0248 CVE-2012-1185 CVE-2012-1186 - Add fix for CVE-2012-0259 CVE-2012-0260 CVE-2012-1798...
ImageMagick security and bug fix update
6.2.8.0-12.el5 - Add fix for CVE-2010-4167 767142 6.2.8.0-11.el5 Fix assertion failed when using 'identify -verbose' when theres no image information available 502626 6.2.8.0-10.el5 Fix memory allocation failure when using color option 616538 Fix hang when converting broken GIF 693989 Fix...
RedHat Update for ImageMagick RHSA-2012:0301-03
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for ImageMagick FEDORA-2010-19056
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora 13 : ImageMagick-6.5.8.10-7.fc13 (2010-19056)
Backport Patch2: diff-ImageMagicktrunkmagickconfigure.c-from-r2002-to-r3022.diff Fix CVE-2010-4167 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as...
Fedora 14 : ImageMagick-6.6.4.1-15.fc14 (2010-19025)
Backport Patch2: diff-ImageMagicktrunkmagickconfigure.c-from-r2002-to-r3022.diff Fix CVE-2010-4167 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as...
CVE-2010-4167
ImageMagick flaw CVE-2010-4167: Untrusted search path in configure.c allows local privilege escalation when MAGICKCORE_INSTALLED_SUPPORT is defined via a Trojan horse config file in the CWD. Affected: ImageMagick prior to 6.6.5-5. Remediation: upgrade to 6.6.5-5 or newer (as referenced in linked ...