PT-2006-6538 · Imagemagick+1 · Imagemagick+1

Daniel Kobras

·

Published

2006-11-22

·

Updated

2018-10-17

·

CVE-2006-5868

CVSS v2.0

9.3

High

VectorAV:N/AC:M/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Imagemagick versions 6.0 before 6.0.6.2 Imagemagick versions 6.2 before 6.2.4.5
Description The issue concerns multiple buffer overflows in Imagemagick, which can be triggered via crafted SGI images. The impact and attack vectors of this issue are user-assisted.
Recommendations For Imagemagick versions 6.0 before 6.0.6.2, update to version 6.0.6.2 or later. For Imagemagick versions 6.2 before 6.2.4.5, update to version 6.2.4.5 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

CVE-2006-5868
DSA-1213
RHSA-2007:0015
RHSA-2007_0015

Affected Products

Imagemagick
Red Hat