Oval Definition:oval:com.redhat.rhsa:def:20070015
Revision Date:2007-02-15Version:638
Title:RHSA-2007:0015: ImageMagick security update (Moderate)
Description:ImageMagick is an image display and manipulation tool for the X Window System that can read and write multiple image formats.

Several security flaws were discovered in the way ImageMagick decodes DCM, PALM, and SGI graphic files. An attacker may be able to execute arbitrary code on a victim's machine if they were able to trick the victim into opening a specially crafted image file (CVE-2006-5456, CVE-2006-5868).

A heap overflow flaw was found in ImageMagick. An attacker may be able to execute arbitrary code on a victim's machine if they were able to trick the victim into opening a specially crafted file (CVE-2006-2440). This issue only affected the version of ImageMagick distributed with Red Hat Enterprise Linux 4.

Users of ImageMagick should upgrade to these updated packages, which contain backported patches to correct these issues.
Family:unixClass:patch
Status:Reference(s):CVE-2006-2440
CVE-2006-5456
CVE-2006-5868
RHSA-2007:0015
RHSA-2007:0015-01
RHSA-2007:0015-01
Platform(s):Red Hat Enterprise Linux 3
Red Hat Enterprise Linux 4
Product(s):
Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 3 is installed
  • AND
  • ImageMagick-perl is earlier than 0:5.5.6-24
  • AND ImageMagick-perl is signed with Red Hat master key
  • ImageMagick-c++ is earlier than 0:5.5.6-24
  • AND ImageMagick-c++ is signed with Red Hat master key
  • ImageMagick-c++-devel is earlier than 0:5.5.6-24
  • AND ImageMagick-c++-devel is signed with Red Hat master key
  • ImageMagick-devel is earlier than 0:5.5.6-24
  • AND ImageMagick-devel is signed with Red Hat master key
  • ImageMagick is earlier than 0:5.5.6-24
  • AND ImageMagick is signed with Red Hat master key
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND
  • ImageMagick is earlier than 0:6.0.7.1-16.0.3
  • AND ImageMagick is signed with Red Hat master key
  • ImageMagick-c++ is earlier than 0:6.0.7.1-16.0.3
  • AND ImageMagick-c++ is signed with Red Hat master key
  • ImageMagick-c++-devel is earlier than 0:6.0.7.1-16.0.3
  • AND ImageMagick-c++-devel is signed with Red Hat master key
  • ImageMagick-devel is earlier than 0:6.0.7.1-16.0.3
  • AND ImageMagick-devel is signed with Red Hat master key
  • ImageMagick-perl is earlier than 0:6.0.7.1-16.0.3
  • AND ImageMagick-perl is signed with Red Hat master key
    • Definition Synopsis
  • Release Information
  • Red Hat Enterprise Linux 3 is installed
  • AND
  • ImageMagick is earlier than 0:5.5.6-24
  • AND ImageMagick is signed with Red Hat master key
  • ImageMagick-c++ is earlier than 0:5.5.6-24
  • AND ImageMagick-c++ is signed with Red Hat master key
  • ImageMagick-c++-devel is earlier than 0:5.5.6-24
  • AND ImageMagick-c++-devel is signed with Red Hat master key
  • ImageMagick-devel is earlier than 0:5.5.6-24
  • AND ImageMagick-devel is signed with Red Hat master key
  • ImageMagick-perl is earlier than 0:5.5.6-24
  • AND ImageMagick-perl is signed with Red Hat master key
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND
  • ImageMagick is earlier than 0:6.0.7.1-16.0.3
  • AND ImageMagick is signed with Red Hat master key
  • ImageMagick-c++ is earlier than 0:6.0.7.1-16.0.3
  • AND ImageMagick-c++ is signed with Red Hat master key
  • ImageMagick-c++-devel is earlier than 0:6.0.7.1-16.0.3
  • AND ImageMagick-c++-devel is signed with Red Hat master key
  • ImageMagick-devel is earlier than 0:6.0.7.1-16.0.3
  • AND ImageMagick-devel is signed with Red Hat master key
  • ImageMagick-perl is earlier than 0:6.0.7.1-16.0.3
  • AND ImageMagick-perl is signed with Red Hat master key
    • Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND
  • ImageMagick is earlier than 0:6.0.7.1-16.0.3
  • AND ImageMagick is signed with Red Hat redhatrelease2 key
  • ImageMagick-c++ is earlier than 0:6.0.7.1-16.0.3
  • AND ImageMagick-c++ is signed with Red Hat redhatrelease2 key
  • ImageMagick-c++-devel is earlier than 0:6.0.7.1-16.0.3
  • AND ImageMagick-c++-devel is signed with Red Hat redhatrelease2 key
  • ImageMagick-devel is earlier than 0:6.0.7.1-16.0.3
  • AND ImageMagick-devel is signed with Red Hat redhatrelease2 key
  • ImageMagick-perl is earlier than 0:6.0.7.1-16.0.3
  • AND ImageMagick-perl is signed with Red Hat redhatrelease2 key
    • BACK