UbuntuUSN-1544-1ImageMagick vulnerability
6.9 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.036 Low
EPSS
Percentile
91.5%
Releases
- Ubuntu 12.04
- Ubuntu 11.10
- Ubuntu 11.04
- Ubuntu 10.04
Packages
- imagemagick - Image manipulation programs and library
Details
Tom Lane discovered that ImageMagick would not always properly allocate
memory. If a user or automated system using ImageMagick were tricked into
opening a specially crafted PNG image, an attacker could exploit this to
cause a denial of service or possibly execute code with the privileges of
the user invoking the program.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 12.04 | noarch | libmagick++4 | <Â 8:6.6.9.7-5ubuntu3.2 | UNKNOWN |
| Ubuntu | 12.04 | noarch | imagemagick | <Â 8:6.6.9.7-5ubuntu3.2 | UNKNOWN |
| Ubuntu | 12.04 | noarch | imagemagick-dbg | <Â 8:6.6.9.7-5ubuntu3.2 | UNKNOWN |
| Ubuntu | 12.04 | noarch | libmagick++-dev | <Â 8:6.6.9.7-5ubuntu3.2 | UNKNOWN |
| Ubuntu | 12.04 | noarch | libmagickcore-dev | <Â 8:6.6.9.7-5ubuntu3.2 | UNKNOWN |
| Ubuntu | 12.04 | noarch | libmagickcore4 | <Â 8:6.6.9.7-5ubuntu3.2 | UNKNOWN |
| Ubuntu | 12.04 | noarch | libmagickcore4-extra | <Â 8:6.6.9.7-5ubuntu3.2 | UNKNOWN |
| Ubuntu | 12.04 | noarch | libmagickwand-dev | <Â 8:6.6.9.7-5ubuntu3.2 | UNKNOWN |
| Ubuntu | 12.04 | noarch | libmagickwand4 | <Â 8:6.6.9.7-5ubuntu3.2 | UNKNOWN |
| Ubuntu | 12.04 | noarch | perlmagick | <Â 8:6.6.9.7-5ubuntu3.2 | UNKNOWN |
References
Related
6.9 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.036 Low
EPSS
Percentile
91.5%