Oval Definition:oval:com.redhat.rhsa:def:20050071
Revision Date:2005-02-15Version:502
Title:RHSA-2005:071: ImageMagick security update (Moderate)
Description:ImageMagick is an image display and manipulation tool for the X Window System.

Andrei Nigmatulin discovered a heap based buffer overflow flaw in the ImageMagick image handler. An attacker could create a carefully crafted Photoshop Document (PSD) image in such a way that it would cause ImageMagick to execute arbitrary code when processing the image. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2005-0005 to this issue.

Users of ImageMagick should upgrade to these updated packages, which contain a backported patch, and are not vulnerable to this issue.
Family:unixClass:patch
Status:Reference(s):CVE-2005-0005
RHSA-2005:071-01
Platform(s):Red Hat Enterprise Linux 4
Product(s):
Definition Synopsis
  • Red Hat Enterprise Linux 4 is installed
  • AND Package Information
  • ImageMagick-devel is earlier than 0:6.0.7.1-6
  • AND ImageMagick-devel is signed with Red Hat master key
  • OR
  • ImageMagick-c++-devel is earlier than 0:6.0.7.1-6
  • AND ImageMagick-c++-devel is signed with Red Hat master key
  • OR
  • ImageMagick-perl is earlier than 0:6.0.7.1-6
  • AND ImageMagick-perl is signed with Red Hat master key
  • OR
  • ImageMagick is earlier than 0:6.0.7.1-6
  • AND ImageMagick is signed with Red Hat master key
  • OR
  • ImageMagick-c++ is earlier than 0:6.0.7.1-6
  • AND ImageMagick-c++ is signed with Red Hat master key
    • BACK