Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:DSA-702-1
HistoryApr 01, 2005 - 12:00 a.m.

imagemagick - several

2005-04-0100:00:00
Google
osv.dev
11

0.069 Low

EPSS

Percentile

93.9%

JSON

Several vulnerabilities have been discovered in ImageMagick, a
commonly used image manipulation library. These problems can be
exploited by a carefully crafted graphic image. The Common
Vulnerabilities and Exposures project identifies the following
problems:

  • CAN-2005-0397
    Tavis Ormandy discovered a format string vulnerability in the
    filename handling code which allows a remote attacker to cause a
    denial of service and possibly execute arbitrary code.

  • CAN-2005-0759
    Andrei Nigmatulin discovered a denial of service condition which
    can be caused by an invalid tag in a TIFF image.

  • CAN-2005-0760
    Andrei Nigmatulin discovered that the TIFF decoder is vulnerable
    to accessing memory out of bounds which will result in a
    segmentation fault.

  • CAN-2005-0762
    Andrei Nigmatulin discovered a buffer overflow in the SGI parser
    which allows a remote attacker to execute arbitrary code via a
    specially crafted SGI image file.

For the stable distribution (woody) these problems have been fixed in
version 5.4.4.5-1woody6.

For the unstable distribution (sid) these problems have been fixed in
version 6.0.6.2-2.2.

We recommend that you upgrade your imagemagick package.

Related

nessus 11
debian 2
openvas 7
suse 1
redhat 2
nvd 5
ubuntucve 5
cve 5
ubuntu 1
gentoo 1
debiancve 5
freebsd 1
cvelist 5
prion 1
nessus
nessus
Debian DSA-702-1 : imagemagick - several vulnerabilities
2005-04-02 00:00:00
SUSE-SA:2005:017: ImageMagick
2005-03-24 00:00:00
Mandrake Linux Security Advisory : ImageMagick (MDKSA-2005:065)
2005-04-02 00:00:00
debian
debian
[SECURITY] [DSA 702-1] New ImageMagick packages fix several vulnerabilities
2005-04-01 14:26:54
[SECURITY] [DSA 702-1] New ImageMagick packages fix several vulnerabilities
2005-04-01 14:26:54
openvas
openvas
Debian Security Advisory DSA 702-1 (imagemagick)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-702-1)
2008-01-17 00:00:00
FreeBSD Ports: ImageMagick
2008-09-04 00:00:00
suse
suse
remote code execution in ImageMagick
2005-03-23 15:05:35
redhat
redhat
(RHSA-2005:070) ImageMagick security update
2005-03-23 00:00:00
(RHSA-2005:320) ImageMagick security update
2005-03-23 00:00:00
nvd
nvd
CVE-2005-0760
2005-05-02 04:00:00
CVE-2005-0759
2005-03-23 05:00:00
CVE-2005-0397
2005-05-02 04:00:00
ubuntucve
ubuntucve
CVE-2005-0759
2005-03-23 00:00:00
CVE-2005-0397
2005-05-02 00:00:00
CVE-2005-0760
2005-05-02 00:00:00
cve
cve
CVE-2005-0397
2005-05-02 04:00:00
CVE-2005-0760
2005-05-02 04:00:00
CVE-2005-0759
2005-03-26 05:00:00
ubuntu
ubuntu
Imagemagick vulnerability
2005-03-03 00:00:00
gentoo
gentoo
ImageMagick: Filename handling vulnerability
2005-03-06 00:00:00
debiancve
debiancve
CVE-2005-0760
2005-05-02 04:00:00
CVE-2005-0759
2005-03-26 05:00:00
CVE-2005-0397
2005-05-02 04:00:00
freebsd
freebsd
ImageMagick -- format string vulnerability
2005-03-02 00:00:00
cvelist
cvelist
CVE-2005-0760
2005-03-26 05:00:00
CVE-2005-0759
2005-03-26 05:00:00
CVE-2005-0397
2005-03-07 05:00:00
prion
prion
Format string
2006-01-04 23:03:00

0.069 Low

EPSS

Percentile

93.9%

JSON
Related for OSV:DSA-702-1
nessus11debian2openvas7suse1redhat2nvd5ubuntucve5cve5ubuntu1gentoo1debiancve5freebsd1cvelist5prion1