Debian Security Advisory DSA 2462-2 (imagemagick - several vulnerabilities)
Information
Severity
Severity
Medium
Family
Family
Debian Local Security Checks
CVSSv2 Base
CVSSv2 Base
6.8
CVSSv2 Vector
CVSSv2 Vector
AV:N/AC:M/Au:N/C:P/I:P/A:P
Solution Type
Solution Type
Vendor Patch
Created
Created
8 years ago
Modified
Modified
6 months ago
Summary
Several integer overflows and missing input validations were discovered in the ImageMagick image manipulation suite, resulting in the execution of arbitrary code or denial of service.
Affected Software
Affected Software
imagemagick on Debian Linux
Detection Method
Detection Method
This check tests the installed software version using the apt package manager.
Solution
Solution
For the stable distribution (squeeze), this problem has been fixed in version 6.6.0.4-3+squeeze3. For the unstable distribution (sid), this problem has been fixed in version 8:6.7.4.0-5. We recommend that you upgrade your imagemagick packages.
Common Vulnerabilities and Exposures (CVE)
Free Vulnerability Scanner
Mageni can help you to scan, assess and manage your vulnerabilities.