Security Advisories (MDKSA-2005:065): ImageMagick

aru · April 1, 2005

Mandrakesoft Security Advisories MDKSA-2005:065 : ImageMagick

Updated ImageMagick packages fix multiple vulnerabilities

April 1st, 2005

A format string vulnerability was discovered in ImageMagick, in the way it handles filenames.An attacker could execute arbitrary code on a victim's machine provided they could trick them into opening a file with a special name (CAN-2005-0397).

As well, Andrei Nigmatulin discovered a heap-based buffer overflow in ImageMagick's image handler.An attacker could create a special PhotoShop Document (PSD) image file in such a way that it would cause ImageMagick to execute arbitray code when processing the image (CAN-2005-0005).

Other vulnerabilities were discovered in ImageMagick versions prior to 6.0:

A bug in the way that ImageMagick handles TIFF tags was discovered. It was possible that a TIFF image with an invalid tag could cause ImageMagick to crash (CAN-2005-0759).

A bug in ImageMagick's TIFF decoder was discovered where a specially- crafted TIFF image could cause ImageMagick to crash (CAN-2005-0760).

A bug in ImageMagick's PSD parsing was discovered where a specially- crafted PSD file could cause ImageMagick to crash (CAN-2005-0761).

Finally, a heap overflow bug was discovered in ImageMagick's SGI parser.If an attacker could trick a user into opening a specially- crafted SGI image file, ImageMagick would execute arbitrary code (CAN-2005-0762).

The updated packages have been patched to correct these issues.

The released versions of Mandrake GNU/Linux affected are: