Lucene search
UbuntuUSN-372-1HistoryNov 01, 2006 - 12:00 a.m.
imagemagick vulnerability
2006-11-0100:00:00
ubuntu.com
28
7 High
AI Score
Confidence
Low
5.1 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
0.01 Low
EPSS
Percentile
83.8%
Releases
- Ubuntu 6.10
- Ubuntu 6.06
- Ubuntu 5.10
- Ubuntu 5.04
Details
M. Joonas Pihlaja discovered that ImageMagick did not sufficiently
verify the validity of PALM and DCM images. When processing a
specially crafted image with an application that uses imagemagick,
this could be exploited to execute arbitrary code with the
application’s privileges.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 6.10 | noarch | libmagick9 | < 7:6.2.4.5.dfsg1-0.10ubuntu0.1 | UNKNOWN |
| Ubuntu | 6.06 | noarch | libmagick9 | < 6:6.2.4.5-0.6ubuntu0.3 | UNKNOWN |
| Ubuntu | 5.10 | noarch | libmagick6 | < 6:6.2.3.4-1ubuntu1.4 | UNKNOWN |
| Ubuntu | 5.04 | noarch | libmagick6 | < 6:6.0.6.2-2.1ubuntu1.5 | UNKNOWN |
References
Related
osv
osv
imagemagick
2007-02-14 00:00:00
imagemagick
2006-11-19 00:00:00
openvas
openvas
Slackware Advisory SSA:2007-066-06 imagemagick
2012-09-11 00:00:00
Ubuntu: Security Advisory (USN-372-1)
2022-08-26 00:00:00
Gentoo Security Advisory GLSA 200611-19 (imagemagick)
2008-09-24 00:00:00
nessus
nessus
GLSA-200611-19 : ImageMagick: PALM and DCM buffer overflows
2006-11-27 00:00:00
openSUSE 10 Security Update : ImageMagick (ImageMagick-2235)
2007-10-17 00:00:00
SuSE 10 Security Update : ImageMagick (ZYPP Patch Number 2239)
2007-12-13 00:00:00
securityvulns
securityvulns
[ GLSA 200611-07 ] GraphicsMagick: PALM and DCM buffer overflows
2006-11-14 00:00:00
[ GLSA 200611-19 ] ImageMagick: PALM and DCM buffer overflows
2006-11-25 00:00:00
ImageMagick buffer overflow
2007-02-11 00:00:00
gentoo
gentoo
ImageMagick: PALM and DCM buffer overflows
2006-11-24 00:00:00
GraphicsMagick: PALM and DCM buffer overflows
2006-11-13 00:00:00
suse
suse
remote denial of service in ImageMagick
2006-11-14 12:50:06
cve
cve
CVE-2006-5456
2006-10-23 17:07:00
CVE-2007-0770
2007-02-12 20:28:00
debiancve
debiancve
CVE-2006-5456
2006-10-23 17:07:00
CVE-2007-0770
2007-02-12 20:28:00
slackware
slackware
[slackware-security] imagemagick
2007-03-08 02:37:38
ubuntucve
ubuntucve
CVE-2006-5456
2006-10-23 00:00:00
CVE-2007-0770
2007-02-12 00:00:00
prion
prion
Buffer overflow
2007-02-12 20:28:00
ubuntu
ubuntu
ImageMagick vulnerabilities
2007-02-15 00:00:00
debian
debian
[SECURITY] [DSA 1260-1] New imagemagick package fix arbitrary code execution
2007-02-14 21:04:27
[SECURITY] [DSA 1213-1] New imagemagick packages fix several vulnerabilities
2006-11-19 12:43:56
redhatcve
redhatcve
CVE-2007-0770
2015-10-30 10:18:28
redhat
redhat
(RHSA-2007:0015) Moderate: ImageMagick security update
2007-02-15 00:00:00
oraclelinux
oraclelinux
Moderate: ImageMagick security update
2007-02-15 00:00:00
centos
centos
ImageMagick security update
2007-02-18 23:20:12
ImageMagick security update
2007-02-15 20:32:09
fedora
fedora
[SECURITY] Fedora Core 5 Update: ImageMagick-6.2.5.4-4.2.1.fc5.8
2007-04-17 12:53:26
[SECURITY] Fedora 7 Update: GraphicsMagick-1.1.8-2.fc7
2007-07-30 17:04:58
7 High
AI Score
Confidence
Low
5.1 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
0.01 Low
EPSS
Percentile
83.8%
Related for USN-372-1