'[oss-security] CVE Request -- ImageMagick -- Integer overflow in XMakeImage()'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    [oss-security] CVE Request -- ImageMagick -- Integer overflow in XMakeImage()
From:       Jan Lieskovsky <jlieskov () redhat ! com>
Date:       2009-05-28 8:48:10
Message-ID: 1243500490.3772.6.camel () localhost ! localdomain
[Download RAW message or body]

Hello Steve,

  latest version of ImageMagick fixes one integer overflow
in XMakeImage().

References:
http://secunia.com/advisories/35216/
http://www.imagemagick.org/script/changelog.php
http://trac.imagemagick.org/changeset/513/ImageMagick/trunk/magick/xwindow.c
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=530838

Vulnerable version: 6.5.2-8 and prior

Credit: Tielei Wang

Regards, Jan.
--
Jan iankko Lieskovsky / Red Hat Security Response Team

[prev in list] [next in list] [prev in thread] [next in thread]

Configure | About | News | Add a list | Sponsored by KoreLogic