Oval Definition:	oval:org.mitre.oval:def:22407
Revision Date: 2014-05-26 Version: 36 Title: ELSA-2008:0145: ImageMagick security update (Moderate) Description: Heap-based buffer overflow in the ReadPCXImage function in the PCX coder in coders/pcx.c in (1) ImageMagick 6.2.4-5 and 6.2.8-0 and (2) GraphicsMagick (aka gm) 1.1.7 allows user-assisted remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted .pcx file that triggers incorrect memory allocation for the scanline array, leading to memory corruption. Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2007-1797 CVE-2007-4985 CVE-2007-4986 CVE-2007-4988 CVE-2008-1096 CVE-2008-1097 ELSA-2008:0145-01 Platform(s): Oracle Linux 5 Product(s): ImageMagick Definition Synopsis Oracle Linux 5.x AND rpm test ImageMagick-c++-devel is earlier than 0:6.2.8.0-4.el5_1.1 OR ImageMagick-devel is earlier than 0:6.2.8.0-4.el5_1.1 OR ImageMagick-perl is earlier than 0:6.2.8.0-4.el5_1.1 OR ImageMagick is earlier than 0:6.2.8.0-4.el5_1.1 OR ImageMagick-c++ is earlier than 0:6.2.8.0-4.el5_1.1
BACK