aru Posted April 1, 2005 Report Share Posted April 1, 2005 Mandrakesoft Security Advisories MDKSA-2005:065 : ImageMagick Updated ImageMagick packages fix multiple vulnerabilities April 1st, 2005 A format string vulnerability was discovered in ImageMagick, in the way it handles filenames.An attacker could execute arbitrary code on a victim's machine provided they could trick them into opening a file with a special name (CAN-2005-0397). As well, Andrei Nigmatulin discovered a heap-based buffer overflow in ImageMagick's image handler.An attacker could create a special PhotoShop Document (PSD) image file in such a way that it would cause ImageMagick to execute arbitray code when processing the image (CAN-2005-0005). Other vulnerabilities were discovered in ImageMagick versions prior to 6.0: A bug in the way that ImageMagick handles TIFF tags was discovered. It was possible that a TIFF image with an invalid tag could cause ImageMagick to crash (CAN-2005-0759). A bug in ImageMagick's TIFF decoder was discovered where a specially- crafted TIFF image could cause ImageMagick to crash (CAN-2005-0760). A bug in ImageMagick's PSD parsing was discovered where a specially- crafted PSD file could cause ImageMagick to crash (CAN-2005-0761). Finally, a heap overflow bug was discovered in ImageMagick's SGI parser.If an attacker could trick a user into opening a specially- crafted SGI image file, ImageMagick would execute arbitrary code (CAN-2005-0762). The updated packages have been patched to correct these issues. The released versions of Mandrake GNU/Linux affected are: 10.0 10.1 CS2.1 CS3.0 Full information about this advisory, including the updated packages, is available at: www.mandrakesoft.com/security/advisories?name=MDKSA-2005:065 Other references: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0005 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0397 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0759 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0760 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0761 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0762 Posted automatically by aru (mdksec2mub v: mdksec2mub,v 0.11 2004/10/23 09:47:46 aru Exp aru $) Link to comment Share on other sites More sharing options...
Recommended Posts