CVE 2007-0770
Buffer overflow in GraphicsMagick and ImageMagick allows user-assisted remote attackers to cause a denial of service and possibly execute arbitrary code via a PALM image that is not properly handled by the ReadPALMImage function in coders/palm.c. NOTE: this issue is due to an incomplete patch for CVE-2006-5456.
Related bugs and status
CVE-2007-0770 (Candidate) is related to these bugs:
Bug #20599: imagemagick in combination with transcode fails (amd64)
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
20599 | imagemagick in combination with transcode fails (amd64) | imagemagick (Ubuntu) | High | Fix Released | ||
20599 | imagemagick in combination with transcode fails (amd64) | imagemagick (Debian) | Unknown | Fix Released |
Bug #27767: Shell command injection in delegate code (via file names)
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
27767 | Shell command injection in delegate code (via file names) | imagemagick (Ubuntu) | High | Fix Released | ||
27767 | Shell command injection in delegate code (via file names) | imagemagick (Debian) | Unknown | Fix Released |
Bug #27952: imagemagick: New format string vulnerability in SetImageInfo().
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
27952 | imagemagick: New format string vulnerability in SetImageInfo(). | imagemagick (Ubuntu) | High | Fix Released | ||
27952 | imagemagick: New format string vulnerability in SetImageInfo(). | imagemagick (Debian) | Unknown | Fix Released |
Bug #28042: libmagick: array index overflow in DisplayImageCommand
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
28042 | libmagick: array index overflow in DisplayImageCommand | imagemagick (Ubuntu) | High | Fix Released | ||
28042 | libmagick: array index overflow in DisplayImageCommand | imagemagick (Debian) | Unknown | Fix Released |
Bug #68144: Buffer overflows while processing DCM or PALM images
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
68144 | Buffer overflows while processing DCM or PALM images | imagemagick (Ubuntu) | High | Fix Released | ||
68144 | Buffer overflows while processing DCM or PALM images | imagemagick (Fedora) | Medium | Fix Released | ||
68144 | Buffer overflows while processing DCM or PALM images | graphicsmagick (Ubuntu) | High | Fix Released |
Bug #85231: Please sync imagemagick (main) from unstable (main)
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
85231 | Please sync imagemagick (main) from unstable (main) | imagemagick (Ubuntu) | Undecided | Fix Released |
See the
CVE page on Mitre.org
for more details.