Lucene search
GoogleOSV:DSA-2427-1HistoryMar 06, 2012 - 12:00 a.m.
imagemagick - several
2012-03-0600:00:00
Google
osv.dev
8
0.781 High
EPSS
Percentile
98.3%
Two security vulnerabilities related to EXIF processing were
discovered in ImageMagick, a suite of programs to manipulate images.
- CVE-2012-0247
When parsing a maliciously crafted image with incorrect offset
and count in the ResolutionUnit tag in EXIF IFD0, ImageMagick
writes two bytes to an invalid address. - CVE-2012-0248
Parsing a maliciously crafted image with an IFD whose all IOP
tags value offsets point to the beginning of the IFD itself
results in an endless loop and a denial of service.
For the stable distribution (squeeze), these problems have been fixed
in version 8:6.6.0.4-3+squeeze1.
For the testing distribution (wheezy) and the unstable distribution
(sid), these problems have been fixed in version 8:6.6.9.7-6.
We recommend that you upgrade your imagemagick packages.
| CPE | Name | Operator | Version |
|---|---|---|---|
| imagemagick | eq | 8:6.6.0.4-3 |
References
Related
openvas
openvas
ImageMagick < 6.7.5-8 Multiple Denial of Service Vulnerabilities (Jun 2013) - Windows
2013-06-24 00:00:00
Gentoo Security Advisory GLSA 201203-09 (ImageMagick)
2012-03-12 00:00:00
Debian Security Advisory DSA 2427-1 (imagemagick - several vulnerabilities)
2013-09-18 00:00:00
nessus
nessus
ImageMagick < 6.7.5-1 Multiple Vulnerabilities
2012-06-05 00:00:00
GLSA-201203-09 : ImageMagick: User-assisted execution of arbitrary code
2012-03-06 00:00:00
Debian DSA-2427-1 : imagemagick - several vulnerabilities
2012-03-07 00:00:00
debian
debian
[SECURITY] [DSA 2427-1] imagemagick security update
2012-03-06 19:13:37
gentoo
gentoo
ImageMagick: User-assisted execution of arbitrary code
2012-03-06 00:00:00
ImageMagick: Multiple vulnerabilities
2014-05-17 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 2427-1] imagemagick security update
2012-03-09 00:00:00
imagemagic security vulnerabilities
2012-03-09 00:00:00
ubuntucve
ubuntucve
centos
centos
ImageMagick security update
2012-05-07 21:07:07
ImageMagick security update
2012-05-07 22:49:25
redhat
redhat
(RHSA-2012:0545) Moderate: ImageMagick security and bug fix update
2012-05-07 00:00:00
(RHSA-2012:0544) Moderate: ImageMagick security update
2012-05-07 00:00:00
prion
prion
Memory corruption
2012-06-05 22:55:00
Code injection
2012-06-05 22:55:00
Integer overflow
2012-06-05 22:55:00
cvelist
cvelist
veracode
veracode
Denial Of Service (DoS)
2019-01-15 08:51:08
debiancve
debiancve
nvd
nvd
cve
cve
checkpoint_advisories
checkpoint_advisories
ImageMagick EXIF ResolutionUnit Handling Memory Corruption (CVE-2012-0247)
2012-05-14 00:00:00
amazon
amazon
Medium: ImageMagick
2012-05-08 23:14:00
oraclelinux
oraclelinux
ImageMagick security and bug fix update
2012-05-07 00:00:00
ImageMagick security update
2012-05-07 00:00:00
ubuntu
ubuntu
ImageMagick vulnerabilities
2012-05-01 00:00:00