Oval Definition:oval:com.redhat.rhsa:def:20060178
Revision Date:2006-02-14Version:637
Title:RHSA-2006:0178: ImageMagick security update (Moderate)
Description:ImageMagick(TM) is an image display and manipulation tool for the X Window System that can read and write multiple image formats.

A shell command injection flaw was found in ImageMagick's "display" command. It is possible to execute arbitrary commands by tricking a user into running "display" on a file with a specially crafted name. The Common Vulnerabilities and Exposures project (cve.mitre.org) assigned the name CVE-2005-4601 to this issue.

  • A format string flaw was discovered in the way ImageMagick handles filenames. It may be possible to execute arbitrary commands by tricking a user into running a carefully crafted ImageMagick command. (CVE-2006-0082)

    Users of ImageMagick should upgrade to these updated packages, which contain backported patches and are not vulnerable to these issues.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2005-4601
    CVE-2006-0082
    RHSA-2006:0178
    RHSA-2006:0178-01
    RHSA-2006:0178-01
    Platform(s):Red Hat Enterprise Linux 3
    Red Hat Enterprise Linux 4
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 3 is installed
  • AND
  • ImageMagick-devel is earlier than 0:5.5.6-18
  • AND ImageMagick-devel is signed with Red Hat master key
  • ImageMagick is earlier than 0:5.5.6-18
  • AND ImageMagick is signed with Red Hat master key
  • ImageMagick-perl is earlier than 0:5.5.6-18
  • AND ImageMagick-perl is signed with Red Hat master key
  • ImageMagick-c++ is earlier than 0:5.5.6-18
  • AND ImageMagick-c++ is signed with Red Hat master key
  • ImageMagick-c++-devel is earlier than 0:5.5.6-18
  • AND ImageMagick-c++-devel is signed with Red Hat master key
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND
  • ImageMagick-c++-devel is earlier than 0:6.0.7.1-14
  • AND ImageMagick-c++-devel is signed with Red Hat master key
  • ImageMagick-devel is earlier than 0:6.0.7.1-14
  • AND ImageMagick-devel is signed with Red Hat master key
  • ImageMagick-perl is earlier than 0:6.0.7.1-14
  • AND ImageMagick-perl is signed with Red Hat master key
  • ImageMagick is earlier than 0:6.0.7.1-14
  • AND ImageMagick is signed with Red Hat master key
  • ImageMagick-c++ is earlier than 0:6.0.7.1-14
  • AND ImageMagick-c++ is signed with Red Hat master key
    • Definition Synopsis
  • Release Information
  • Red Hat Enterprise Linux 3 is installed
  • AND
  • ImageMagick is earlier than 0:5.5.6-18
  • AND ImageMagick is signed with Red Hat master key
  • ImageMagick-c++ is earlier than 0:5.5.6-18
  • AND ImageMagick-c++ is signed with Red Hat master key
  • ImageMagick-c++-devel is earlier than 0:5.5.6-18
  • AND ImageMagick-c++-devel is signed with Red Hat master key
  • ImageMagick-devel is earlier than 0:5.5.6-18
  • AND ImageMagick-devel is signed with Red Hat master key
  • ImageMagick-perl is earlier than 0:5.5.6-18
  • AND ImageMagick-perl is signed with Red Hat master key
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND
  • ImageMagick is earlier than 0:6.0.7.1-14
  • AND ImageMagick is signed with Red Hat master key
  • ImageMagick-c++ is earlier than 0:6.0.7.1-14
  • AND ImageMagick-c++ is signed with Red Hat master key
  • ImageMagick-c++-devel is earlier than 0:6.0.7.1-14
  • AND ImageMagick-c++-devel is signed with Red Hat master key
  • ImageMagick-devel is earlier than 0:6.0.7.1-14
  • AND ImageMagick-devel is signed with Red Hat master key
  • ImageMagick-perl is earlier than 0:6.0.7.1-14
  • AND ImageMagick-perl is signed with Red Hat master key
    • Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND
  • ImageMagick is earlier than 0:6.0.7.1-14
  • AND ImageMagick is signed with Red Hat redhatrelease2 key
  • ImageMagick-c++ is earlier than 0:6.0.7.1-14
  • AND ImageMagick-c++ is signed with Red Hat redhatrelease2 key
  • ImageMagick-c++-devel is earlier than 0:6.0.7.1-14
  • AND ImageMagick-c++-devel is signed with Red Hat redhatrelease2 key
  • ImageMagick-devel is earlier than 0:6.0.7.1-14
  • AND ImageMagick-devel is signed with Red Hat redhatrelease2 key
  • ImageMagick-perl is earlier than 0:6.0.7.1-14
  • AND ImageMagick-perl is signed with Red Hat redhatrelease2 key
    • BACK