CVE-2008-6070

Name of the Vulnerable Software and Affected Versions GraphicsMagick versions prior to 1.2.3

Description The issue is related to multiple heap-based buffer underflows in the ReadPALMImage function, which can be triggered by a crafted PALM image. This could lead to a denial of service (crash) or potentially allow the execution of arbitrary code.

Recommendations For versions prior to 1.2.3, update to version 1.2.3 or later to resolve the issue. As a temporary workaround, consider restricting the use of the ReadPALMImage function in coders/palm.c until a patch is applied. Avoid processing crafted PALM images with affected versions of GraphicsMagick to minimize the risk of exploitation.