Launchpad CVE tracker

CVE 2007-1797

Multiple integer overflows in ImageMagick before 6.3.3-5 allow remote attackers to execute arbitrary code via (1) a crafted DCM image, which results in a heap-based overflow in the ReadDCMImage function, or (2) the (a) colors or (b) comments field in a crafted XWD image, which results in a heap-based overflow in the ReadXWDImage function, different issues than CVE-2007-1667.

Related bugs and status

CVE-2007-1797 (Candidate) is related to these bugs:

Bug #20599: imagemagick in combination with transcode fails (amd64)

Summary				In	Importance	Status
	20599	imagemagick in combination with transcode fails (amd64)		imagemagick (Ubuntu)	High	Fix Released
	20599	imagemagick in combination with transcode fails (amd64)		imagemagick (Debian)	Unknown	Fix Released

Bug #27767: Shell command injection in delegate code (via file names)

Summary				In	Importance	Status
	27767	Shell command injection in delegate code (via file names)		imagemagick (Ubuntu)	High	Fix Released
	27767	Shell command injection in delegate code (via file names)		imagemagick (Debian)	Unknown	Fix Released

Bug #27952: imagemagick: New format string vulnerability in SetImageInfo().

Summary				In	Importance	Status
	27952	imagemagick: New format string vulnerability in SetImageInfo().		imagemagick (Ubuntu)	High	Fix Released
	27952	imagemagick: New format string vulnerability in SetImageInfo().		imagemagick (Debian)	Unknown	Fix Released

Bug #28042: libmagick: array index overflow in DisplayImageCommand

Summary				In	Importance	Status
	28042	libmagick: array index overflow in DisplayImageCommand		imagemagick (Ubuntu)	High	Fix Released
	28042	libmagick: array index overflow in DisplayImageCommand		imagemagick (Debian)	Unknown	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2007-1797

References