Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2008-0145

Опубликовано: 17 апр. 2008
Источник: oracle-oval
Платформа: Oracle Linux 5

Описание

ELSA-2008-0145: ImageMagick security update (MODERATE)

[6.2.8.0-4.el5_1.1]

  • backport functionality for CVE patches
  • Add patch for CVE-2007-1797 (#235071)
  • Add patch for CVE-2007-4988 (#310081)
  • Add patch for CVE-2007-4985 (#310091)
  • Add patch for CVE-2007-4986 (#310121)
  • Add patch for CVE-2008-1096 (#286411)
  • Add patch for CVE-2008-1097 (#285861)

Обновленные пакеты

Oracle Linux 5

Oracle Linux ia64

ImageMagick

6.2.8.0-4.el5_1.1

ImageMagick-c++

6.2.8.0-4.el5_1.1

ImageMagick-c++-devel

6.2.8.0-4.el5_1.1

ImageMagick-devel

6.2.8.0-4.el5_1.1

ImageMagick-perl

6.2.8.0-4.el5_1.1

Oracle Linux x86_64

ImageMagick

6.2.8.0-4.el5_1.1

ImageMagick-c++

6.2.8.0-4.el5_1.1

ImageMagick-c++-devel

6.2.8.0-4.el5_1.1

ImageMagick-devel

6.2.8.0-4.el5_1.1

ImageMagick-perl

6.2.8.0-4.el5_1.1

Oracle Linux i386

ImageMagick

6.2.8.0-4.el5_1.1

ImageMagick-c++

6.2.8.0-4.el5_1.1

ImageMagick-c++-devel

6.2.8.0-4.el5_1.1

ImageMagick-devel

6.2.8.0-4.el5_1.1

ImageMagick-perl

6.2.8.0-4.el5_1.1

Связанные CVE

CVE-2007-1797
CVE-2008-1096
CVE-2008-1097
CVE-2007-4986
CVE-2007-4985
CVE-2007-4988

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2007-1797

ubuntu
около 18 лет назад

Multiple integer overflows in ImageMagick before 6.3.3-5 allow remote attackers to execute arbitrary code via (1) a crafted DCM image, which results in a heap-based overflow in the ReadDCMImage function, or (2) the (a) colors or (b) comments field in a crafted XWD image, which results in a heap-based overflow in the ReadXWDImage function, different issues than CVE-2007-1667.

redhat логотип

CVE-2007-1797

redhat
около 18 лет назад

Multiple integer overflows in ImageMagick before 6.3.3-5 allow remote attackers to execute arbitrary code via (1) a crafted DCM image, which results in a heap-based overflow in the ReadDCMImage function, or (2) the (a) colors or (b) comments field in a crafted XWD image, which results in a heap-based overflow in the ReadXWDImage function, different issues than CVE-2007-1667.

nvd логотип

CVE-2007-1797

nvd
около 18 лет назад

Multiple integer overflows in ImageMagick before 6.3.3-5 allow remote attackers to execute arbitrary code via (1) a crafted DCM image, which results in a heap-based overflow in the ReadDCMImage function, or (2) the (a) colors or (b) comments field in a crafted XWD image, which results in a heap-based overflow in the ReadXWDImage function, different issues than CVE-2007-1667.

debian логотип

CVE-2007-1797

debian
около 18 лет назад

Multiple integer overflows in ImageMagick before 6.3.3-5 allow remote ...

github логотип

GHSA-r8m6-cvrj-9326

github
около 3 лет назад

Multiple integer overflows in ImageMagick before 6.3.3-5 allow remote attackers to execute arbitrary code via (1) a crafted DCM image, which results in a heap-based overflow in the ReadDCMImage function, or (2) the (a) colors or (b) comments field in a crafted XWD image, which results in a heap-based overflow in the ReadXWDImage function, different issues than CVE-2007-1667.