Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2012-0301

Опубликовано: 01 мар. 2012
Источник: oracle-oval
Платформа: Oracle Linux 5

Описание

ELSA-2012-0301: ImageMagick security and bug fix update (LOW)

[6.2.8.0-12.el5]

  • Add fix for CVE-2010-4167 (767142)

[6.2.8.0-11.el5] Fix assertion failed when using 'identify -verbose' when theres no image information available (502626)

[6.2.8.0-10.el5] Fix memory allocation failure when using color option (616538) Fix hang when converting broken GIF (693989) Fix conversion of rotated landscape PDF (694922)

[6.2.8.0-9.el5] Fix a deadlock with semaphore (530592)

[6.2.8.0-8.el5]

  • Fix page size argument parsing (580535)

[6.2.8.0-7.el5]

  • Fix SGI image decoding (498063)

[6.2.8.0-6.el5]

  • Add fix for CVE-2009-1882 (504305)

[6.2.8.0-5.el5]

  • update quantum memory patch (necessary for CVE fixes)
  • backport functionality for SetImageExtent (necessary for CVE fixes)
  • Add patch for CVE-2008-1096 (#286411)
  • Add patch for CVE-2008-1097 (#285861)
  • update patch for CVE-2007-4986

Обновленные пакеты

Oracle Linux 5

Oracle Linux ia64

ImageMagick

6.2.8.0-12.el5

ImageMagick-c++

6.2.8.0-12.el5

ImageMagick-c++-devel

6.2.8.0-12.el5

ImageMagick-devel

6.2.8.0-12.el5

ImageMagick-perl

6.2.8.0-12.el5

Oracle Linux x86_64

ImageMagick

6.2.8.0-12.el5

ImageMagick-c++

6.2.8.0-12.el5

ImageMagick-c++-devel

6.2.8.0-12.el5

ImageMagick-devel

6.2.8.0-12.el5

ImageMagick-perl

6.2.8.0-12.el5

Oracle Linux i386

ImageMagick

6.2.8.0-12.el5

ImageMagick-c++

6.2.8.0-12.el5

ImageMagick-c++-devel

6.2.8.0-12.el5

ImageMagick-devel

6.2.8.0-12.el5

ImageMagick-perl

6.2.8.0-12.el5

Связанные CVE

CVE-2010-4167

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2010-4167

ubuntu
больше 14 лет назад

Untrusted search path vulnerability in configure.c in ImageMagick before 6.6.5-5, when MAGICKCORE_INSTALLED_SUPPORT is defined, allows local users to gain privileges via a Trojan horse configuration file in the current working directory.

redhat логотип

CVE-2010-4167

redhat
почти 15 лет назад

Untrusted search path vulnerability in configure.c in ImageMagick before 6.6.5-5, when MAGICKCORE_INSTALLED_SUPPORT is defined, allows local users to gain privileges via a Trojan horse configuration file in the current working directory.

nvd логотип

CVE-2010-4167

nvd
больше 14 лет назад

Untrusted search path vulnerability in configure.c in ImageMagick before 6.6.5-5, when MAGICKCORE_INSTALLED_SUPPORT is defined, allows local users to gain privileges via a Trojan horse configuration file in the current working directory.

debian логотип

CVE-2010-4167

debian
больше 14 лет назад

Untrusted search path vulnerability in configure.c in ImageMagick befo ...

github логотип

GHSA-47hr-2rq3-9pw5

github
больше 3 лет назад

Untrusted search path vulnerability in configure.c in ImageMagick before 6.6.5-5, when MAGICKCORE_INSTALLED_SUPPORT is defined, allows local users to gain privileges via a Trojan horse configuration file in the current working directory.