Executive Summary
Summary | |
---|---|
Title | Updated ImageMagick packages fix vulnerabilities |
Informations | |||
---|---|---|---|
Name | MDVSA-2008:099 | First vendor Publication | 2008-05-08 |
Vendor | Mandriva | Last vendor Modification | 2008-05-08 |
Severity (Vendor) | N/A | Revision | N/A |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:M/Au:N/C:P/I:P/A:P) | |||
---|---|---|---|
Cvss Base Score | 6.8 | Attack Range | Network |
Cvss Impact Score | 6.4 | Attack Complexity | Medium |
Cvss Expoit Score | 8.6 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
A heap-based buffer overflow vulnerability was found in how ImageMagick parsed XCF files. If ImageMagick opened a specially-crafted XCF file, it could be made to overwrite heap memory beyond the bounds of its allocated memory, potentially allowing an attacker to execute arbitrary code on the system running ImageMagick (CVE-2008-1096). Another heap-based buffer overflow vulnerability was found in how ImageMagick processed certain malformed PCX images. If ImageMagick opened a specially-crafted PCX image file, an attacker could possibly execute arbitrary code on the system running ImageMagick (CVE-2008-1097). The updated packages have been patched to correct these issues. |
Original Source
Url : http://www.mandriva.com/security/advisories?name=MDVSA-2008:099 |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
50 % | CWE-399 | Resource Management Errors |
50 % | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:10843 | |||
Oval ID: | oval:org.mitre.oval:def:10843 | ||
Title: | The load_tile function in the XCF coder in coders/xcf.c in (1) ImageMagick 6.2.8-0 and (2) GraphicsMagick (aka gm) 1.1.7 allows user-assisted remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted .xcf file that triggers an out-of-bounds heap write, possibly related to the ScaleCharToQuantum function. | ||
Description: | The load_tile function in the XCF coder in coders/xcf.c in (1) ImageMagick 6.2.8-0 and (2) GraphicsMagick (aka gm) 1.1.7 allows user-assisted remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted .xcf file that triggers an out-of-bounds heap write, possibly related to the ScaleCharToQuantum function. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2008-1096 | Version: | 5 |
Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5 | Product(s): | |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:11237 | |||
Oval ID: | oval:org.mitre.oval:def:11237 | ||
Title: | Heap-based buffer overflow in the ReadPCXImage function in the PCX coder in coders/pcx.c in (1) ImageMagick 6.2.4-5 and 6.2.8-0 and (2) GraphicsMagick (aka gm) 1.1.7 allows user-assisted remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted .pcx file that triggers incorrect memory allocation for the scanline array, leading to memory corruption. | ||
Description: | Heap-based buffer overflow in the ReadPCXImage function in the PCX coder in coders/pcx.c in (1) ImageMagick 6.2.4-5 and 6.2.8-0 and (2) GraphicsMagick (aka gm) 1.1.7 allows user-assisted remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted .pcx file that triggers incorrect memory allocation for the scanline array, leading to memory corruption. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2008-1097 | Version: | 5 |
Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5 | Product(s): | |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:17882 | |||
Oval ID: | oval:org.mitre.oval:def:17882 | ||
Title: | USN-681-1 -- imagemagick vulnerability | ||
Description: | It was discovered that ImageMagick did not correctly handle certain malformed XCF images. | ||
Family: | unix | Class: | patch |
Reference(s): | USN-681-1 CVE-2008-1096 | Version: | 5 |
Platform(s): | Ubuntu 6.06 Ubuntu 7.10 | Product(s): | imagemagick |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:22407 | |||
Oval ID: | oval:org.mitre.oval:def:22407 | ||
Title: | ELSA-2008:0145: ImageMagick security update (Moderate) | ||
Description: | Heap-based buffer overflow in the ReadPCXImage function in the PCX coder in coders/pcx.c in (1) ImageMagick 6.2.4-5 and 6.2.8-0 and (2) GraphicsMagick (aka gm) 1.1.7 allows user-assisted remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted .pcx file that triggers incorrect memory allocation for the scanline array, leading to memory corruption. | ||
Family: | unix | Class: | patch |
Reference(s): | ELSA-2008:0145-01 CVE-2007-1797 CVE-2007-4985 CVE-2007-4986 CVE-2007-4988 CVE-2008-1096 CVE-2008-1097 | Version: | 29 |
Platform(s): | Oracle Linux 5 | Product(s): | ImageMagick |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
OpenVAS Exploits
Date | Description |
---|---|
2009-10-13 | Name : Debian Security Advisory DSA 1903-1 (graphicsmagick) File : nvt/deb_1903_1.nasl |
2009-08-17 | Name : Debian Security Advisory DSA 1858-1 (imagemagick) File : nvt/deb_1858_1.nasl |
2009-04-09 | Name : Mandriva Update for ImageMagick MDVSA-2008:099 (ImageMagick) File : nvt/gb_mandriva_MDVSA_2008_099.nasl |
2009-03-23 | Name : Ubuntu Update for imagemagick vulnerability USN-681-1 File : nvt/gb_ubuntu_USN_681_1.nasl |
2009-03-06 | Name : RedHat Update for ImageMagick RHSA-2008:0145-01 File : nvt/gb_RHSA-2008_0145-01_ImageMagick.nasl |
2009-03-06 | Name : RedHat Update for ImageMagick RHSA-2008:0165-01 File : nvt/gb_RHSA-2008_0165-01_ImageMagick.nasl |
2009-02-27 | Name : CentOS Update for ImageMagick CESA-2008:0145 centos3 i386 File : nvt/gb_CESA-2008_0145_ImageMagick_centos3_i386.nasl |
2009-02-27 | Name : CentOS Update for ImageMagick CESA-2008:0145 centos3 x86_64 File : nvt/gb_CESA-2008_0145_ImageMagick_centos3_x86_64.nasl |
2009-02-27 | Name : CentOS Update for ImageMagick CESA-2008:0145 centos4 i386 File : nvt/gb_CESA-2008_0145_ImageMagick_centos4_i386.nasl |
2009-02-27 | Name : CentOS Update for ImageMagick CESA-2008:0145 centos4 x86_64 File : nvt/gb_CESA-2008_0145_ImageMagick_centos4_x86_64.nasl |
2009-02-27 | Name : CentOS Update for ImageMagick CESA-2008:0165-01 centos2 i386 File : nvt/gb_CESA-2008_0165-01_ImageMagick_centos2_i386.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
43213 | ImageMagick / GraphicsMagick coders/pcx.c PCX Coder ReadPCXImage Function PCX... |
43212 | ImageMagick / GraphicsMagick coders/xcf.c XCF coder ScaleCharToQuantum Functi... |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2013-11-19 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201311-10.nasl - Type : ACT_GATHER_INFO |
2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2008-0145.nasl - Type : ACT_GATHER_INFO |
2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20080416_ImageMagick_on_SL3_x.nasl - Type : ACT_GATHER_INFO |
2010-02-24 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-1858.nasl - Type : ACT_GATHER_INFO |
2010-02-24 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-1903.nasl - Type : ACT_GATHER_INFO |
2009-04-23 | Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2008-099.nasl - Type : ACT_GATHER_INFO |
2009-04-23 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-681-1.nasl - Type : ACT_GATHER_INFO |
2008-07-02 | Name : The remote openSUSE host is missing a security update. File : suse_GraphicsMagick-5276.nasl - Type : ACT_GATHER_INFO |
2008-07-02 | Name : The remote openSUSE host is missing a security update. File : suse_ImageMagick-5277.nasl - Type : ACT_GATHER_INFO |
2008-07-02 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_ImageMagick-5278.nasl - Type : ACT_GATHER_INFO |
2008-04-22 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2008-0145.nasl - Type : ACT_GATHER_INFO |
2008-04-18 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2008-0145.nasl - Type : ACT_GATHER_INFO |
2008-04-18 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2008-0165.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2014-02-17 11:39:23 |
|