Secunia Logo
Netsikker nu! 2008
 Vulnerability IntelligenceVulnerability ScanningBlogCorporate InformationOnline ShopCustomer Login  
 Secunia AdvisoriesSecunia ResearchBinary Analysis  
Home > Vulnerability Intelligence > Secunia Advisories > Mandrake update for ImageMagick
Secunia Advisories
Advisories
Search
Advisories by Product
Advisories by Vendor
Historic Advisories
Mailing Lists & RSS
Report Vulnerability
Contact Form
Business Solutions Restricted
Partner Solutions Restricted
About
 
Mandrake update for ImageMagick
Secunia Advisory: SA14800
Advisory Toolbox:
Issue ticket
Save in to-do list
Mark as handled
Exploit information
Download as PDF
Review actions
Add comment
Release Date: 2005-04-04
Popularity: 5,681 views

Critical:
Highly critical
Impact: System access
Where: From remote
Solution Status: Vendor Patch

OS:Mandrake Corporate Server 2.x
Mandrakelinux 10.0
Mandrakelinux 10.1
Subscribe: Instant alerts on relevant vulnerabilities

CVE reference:CVE-2005-0005
CVE-2005-0397
CVE-2005-0759
CVE-2005-0760
CVE-2005-0761
CVE-2005-0762
Description:
MandrakeSoft has issued an update for ImageMagick. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system.

For more information:
SA14466
SA13892

This update also fixes a boundary error in the handling of SGI files and some other errors in the handling of TIFF and PSD images.

Solution:
Apply updated packages.

Mandrakelinux 10.0

6934bcdb04a00c9e8bf278310a4d97a1 10.0/RPMS/ImageMagick-5.5.7.15-6.3.100mdk.i586.rpm
3a0baa10203d9cd7f29693d70c422411 10.0/RPMS/ImageMagick-doc-5.5.7.15-6.3.100mdk.i586.rpm
cc4466005fcefc66302e76c380fd3d29 10.0/RPMS/libMagick5.5.7-5.5.7.15-6.3.100mdk.i586.rpm
4dab1d0e359b30def19dd027e2c9cecc 10.0/RPMS/libMagick5.5.7-devel-5.5.7.15-6.3.100mdk.i586.rpm
79b4999b37e80b82d3e31ad26db7b90b 10.0/RPMS/perl-Magick-5.5.7.15-6.3.100mdk.i586.rpm
2ddc8dbc59fd26cdf0654f7393e63acc 10.0/SRPMS/ImageMagick-5.5.7.15-6.3.100mdk.src.rpm

Mandrakelinux 10.0/AMD64

19999eddbba540b711d8286cc63aab13 amd64/10.0/RPMS/ImageMagick-5.5.7.15-6.3.100mdk.amd64.rpm
d6cc1e5d60cfc7f3e635e3a19cfa39c2 amd64/10.0/RPMS/ImageMagick-doc-5.5.7.15-6.3.100mdk.amd64.rpm
2d51f1395c4b5bd61b8d2b9e04b8c32e amd64/10.0/RPMS/lib64Magick5.5.7-5.5.7.15-6.3.100mdk.amd64.rpm
4efb0e3ea5ce48723af60c27755a8c1e amd64/10.0/RPMS/lib64Magick5.5.7-devel-5.5.7.15-6.3.100mdk.amd64.rpm
3063415e823fdba9077d33fdc80d5812 amd64/10.0/RPMS/perl-Magick-5.5.7.15-6.3.100mdk.amd64.rpm
2ddc8dbc59fd26cdf0654f7393e63acc amd64/10.0/SRPMS/ImageMagick-5.5.7.15-6.3.100mdk.src.rpm

Mandrakelinux 10.1

9f484abe4c4a273f02e75b326cd75703 10.1/RPMS/ImageMagick-6.0.4.4-5.2.101mdk.i586.rpm
02f61f0204678e5fbe93bf798650ae30 10.1/RPMS/ImageMagick-doc-6.0.4.4-5.2.101mdk.i586.rpm
0956e5b16ef8cb9f0679a0e18c6db2b5 10.1/RPMS/libMagick6.4.0-6.0.4.4-5.2.101mdk.i586.rpm
1d88ee2ab0452d6bfb30998bd3d5b783 10.1/RPMS/libMagick6.4.0-devel-6.0.4.4-5.2.101mdk.i586.rpm
3e4e9b98225c454b3cc7679cce543efa 10.1/RPMS/perl-Magick-6.0.4.4-5.2.101mdk.i586.rpm
dcf46d41f345b3cfb35f720191ffee95 10.1/SRPMS/ImageMagick-6.0.4.4-5.2.101mdk.src.rpm

Mandrakelinux 10.1/X86_64

2b233a0f81ffa51aa04cdb2692a9326f x86_64/10.1/RPMS/ImageMagick-6.0.4.4-5.2.101mdk.x86_64.rpm
4970da03098334fb083755bf67939360 x86_64/10.1/RPMS/ImageMagick-doc-6.0.4.4-5.2.101mdk.x86_64.rpm
e83077f3d38232432aa8641dd94ad804 x86_64/10.1/RPMS/lib64Magick6.4.0-6.0.4.4-5.2.101mdk.x86_64.rpm
db849fd4641def869876a614a24a2ec2 x86_64/10.1/RPMS/lib64Magick6.4.0-devel-6.0.4.4-5.2.101mdk.x86_64.rpm
12d68cdf7e347606bf9bb70ba6051ce3 x86_64/10.1/RPMS/perl-Magick-6.0.4.4-5.2.101mdk.x86_64.rpm
dcf46d41f345b3cfb35f720191ffee95 x86_64/10.1/SRPMS/ImageMagick-6.0.4.4-5.2.101mdk.src.rpm

Corporate Server 2.1

b5790a7e928f01d6711cfd29e60df9eb corporate/2.1/RPMS/ImageMagick-5.4.8.3-2.3.C21mdk.i586.rpm
12fc1f15675a34018601246dbf48efd1 corporate/2.1/RPMS/libMagick5-5.4.8.3-2.3.C21mdk.i586.rpm
e70caf4a6f3f7bc68771c78d8322bbfb corporate/2.1/RPMS/libMagick5-devel-5.4.8.3-2.3.C21mdk.i586.rpm
514c24bde5b0a9b9f7e9e00c3b29f10e corporate/2.1/RPMS/perl-Magick-5.4.8.3-2.3.C21mdk.i586.rpm
2e58703fa9039f43f477738dfca60b50 corporate/2.1/SRPMS/ImageMagick-5.4.8.3-2.3.C21mdk.src.rpm

Corporate Server 2.1/X86_64

b67fb79755ceddb46e334f1633dd7aae x86_64/corporate/2.1/RPMS/ImageMagick-5.4.8.3-2.3.C21mdk.x86_64.rpm
f5e945a29810bcc32ac1eca995071fb5 x86_64/corporate/2.1/RPMS/libMagick5-5.4.8.3-2.3.C21mdk.x86_64.rpm
80f7085bc6e4b2e0f2ce329d4fbd84a1 x86_64/corporate/2.1/RPMS/libMagick5-devel-5.4.8.3-2.3.C21mdk.x86_64.rpm
62013e17a37016ed6d1399873315aeb0 x86_64/corporate/2.1/RPMS/perl-Magick-5.4.8.3-2.3.C21mdk.x86_64.rpm
2e58703fa9039f43f477738dfca60b50 x86_64/corporate/2.1/SRPMS/ImageMagick-5.4.8.3-2.3.C21mdk.src.rpm

Original Advisory:
http://www.mandrakesoft.com/security/advisories?name=MDKSA-2005:065

Other References:
SA14466:
http://secunia.com/advisories/14466/

SA13892:
http://secunia.com/advisories/13892/

Track this Secunia Advisory
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.

Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.

About this Secunia Advisory
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.

Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
  
Latest Advisories

Today
New advisories: 7
New vulnerabilities: 15
Updated advisories: 11

Not // 3 views
chm2pdf Insecure Temporary Directories
Moderately // 44 views
NoticeWare Email Server POP3 Connections Denial of Service
Moderately // 108 views
GuildFTPd "LIST" Processing Buffer Overflow Vulnerability
Not // 165 views
Apache Tomcat "RemoteFilterValve" Security Bypass Security Issue
Less // 136 views
Debian update for openldap
Moderately // 115 views
Debian update for ruby1.9
Moderately // 120 views
Debian update for ruby1.8

10th Oct, 2008
New advisories: 15
New vulnerabilities: 83
Updated advisories: 39

Moderately // 808 views
ScriptsEz Easy Image Downloader "id" File Disclosure Vulnerability
Moderately // 794 views
Built2go Real Estate Listings "event_id" SQL Injection
Highly // 1,170 views
Sun Java System Web Proxy Server FTP Subsystem Buffer Overflow

Solutions | More...  

Send Feedback to Secunia
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.

Ideas, suggestions, and other feedback are most welcome.

Most Popular - 3 Hours

1. Apache Tomcat "RemoteFilterValve" Security Bypass Security Issue // 129 views
2. Debian update for openldap // 105 views
3. Debian update for ruby1.8 // 93 views
4. GuildFTPd "LIST" Processing Buffer Overflow Vulnerability // 92 views
5. Debian update for ruby1.9 // 87 views
6. Sun Java System Web Proxy Server FTP Subsystem Buffer Overflow // 40 views
7. CUPS Multiple Vulnerabilities // 36 views
8. Apple Mac OS X Security Update Fixes Multiple Vulnerabilities // 32 views
9. Trend Micro ServerProtect Multiple Buffer Overflow Vulnerabilities // 29 views
10. Red Hat update for cups // 28 views



Contact | Terms & Conditions and Copyright | Report Vulnerability | Press | Jobs | About Secunia
Copyright Secunia 2002-2008