Vulnerability   
Search   
    Search 191973 CVE descriptions
and 86218 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.702462
Category:Debian Local Security Checks
Title:Debian Security Advisory DSA 2462-2 (imagemagick - several vulnerabilities)
Summary:Several integer overflows and missing input validations were discovered;in the ImageMagick image manipulation suite, resulting in the execution;of arbitrary code or denial of service.
Description:Summary:
Several integer overflows and missing input validations were discovered
in the ImageMagick image manipulation suite, resulting in the execution
of arbitrary code or denial of service.

Affected Software/OS:
imagemagick on Debian Linux

Solution:
For the stable distribution (squeeze), this problem has been fixed in
version 6.6.0.4-3+squeeze3.

For the unstable distribution (sid), this problem has been fixed in
version 8:6.7.4.0-5.

We recommend that you upgrade your imagemagick packages.

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2012-1798
BugTraq ID: 52898
http://www.securityfocus.com/bid/52898
Debian Security Information: DSA-2462 (Google Search)
http://www.debian.org/security/2012/dsa-2462
http://www.osvdb.org/81023
RedHat Security Advisories: RHSA-2012:0544
http://rhn.redhat.com/errata/RHSA-2012-0544.html
http://www.securitytracker.com/id?1027032
http://secunia.com/advisories/48974
http://secunia.com/advisories/49063
http://secunia.com/advisories/49068
http://secunia.com/advisories/49317
http://secunia.com/advisories/55035
SuSE Security Announcement: openSUSE-SU-2012:0692 (Google Search)
http://lists.opensuse.org/opensuse-updates/2012-06/msg00001.html
XForce ISS Database: imagemagick-tiffexififd-dos(74659)
https://exchange.xforce.ibmcloud.com/vulnerabilities/74659
Common Vulnerability Exposure (CVE) ID: CVE-2012-1185
BugTraq ID: 51957
http://www.securityfocus.com/bid/51957
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-1185
http://www.openwall.com/lists/oss-security/2012/03/19/5
http://www.osvdb.org/80556
http://secunia.com/advisories/47926
http://secunia.com/advisories/49043
http://ubuntu.com/usn/usn-1435-1
XForce ISS Database: imagemagick-profile-code-execution(76140)
https://exchange.xforce.ibmcloud.com/vulnerabilities/76140
Common Vulnerability Exposure (CVE) ID: CVE-2012-1610
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-0259
http://www.openwall.com/lists/oss-security/2012/04/04/6
http://www.osvdb.org/81024
XForce ISS Database: imagemagick-getexifproperty-dos(74660)
https://exchange.xforce.ibmcloud.com/vulnerabilities/74660
Common Vulnerability Exposure (CVE) ID: CVE-2012-1186
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-1186
http://www.osvdb.org/80555
XForce ISS Database: imagemagick-syncimageprofiles-dos(76139)
https://exchange.xforce.ibmcloud.com/vulnerabilities/76139
Common Vulnerability Exposure (CVE) ID: CVE-2012-0260
http://www.cert.fi/en/reports/2012/vulnerability635606.html
http://www.osvdb.org/81022
RedHat Security Advisories: RHSA-2012:0545
http://rhn.redhat.com/errata/RHSA-2012-0545.html
http://secunia.com/advisories/57224
http://www.ubuntu.com/usn/USN-2132-1
XForce ISS Database: imagemagick-jpegwarninghandler-dos(74658)
https://exchange.xforce.ibmcloud.com/vulnerabilities/74658
Common Vulnerability Exposure (CVE) ID: CVE-2012-0259
http://www.osvdb.org/81021
http://secunia.com/advisories/48679
XForce ISS Database: imagemagick-jpegexif-dos(74657)
https://exchange.xforce.ibmcloud.com/vulnerabilities/74657
CopyrightCopyright (C) 2013 Greenbone Networks GmbH http://greenbone.net

This is only one of 86218 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2020 E-Soft Inc. All rights reserved.