Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

DSA-3652-1 imagemagick -- security update

Related Vulnerabilities: CVE-2014-9907   CVE-2015-8957   CVE-2015-8958   CVE-2015-8959   CVE-2016-4562   CVE-2016-4563   CVE-2016-4564   CVE-2016-5010   CVE-2016-5687   CVE-2016-5688   CVE-2016-5689   CVE-2016-5690   CVE-2016-5691   CVE-2016-5841   CVE-2016-5842   CVE-2016-6491   CVE-2016-6823   CVE-2016-7513   CVE-2016-7514   CVE-2016-7515   CVE-2016-7516   CVE-2016-7517   CVE-2016-7518   CVE-2016-7519   CVE-2016-7520   CVE-2016-7521   CVE-2016-7522   CVE-2016-7523   CVE-2016-7524   CVE-2016-7525   CVE-2016-7526   CVE-2016-7527   CVE-2016-7528   CVE-2016-7529   CVE-2016-7530   CVE-2016-7531   CVE-2016-7532   CVE-2016-7533   CVE-2016-7534   CVE-2016-7535   CVE-2016-7536   CVE-2016-7537   CVE-2016-7538   CVE-2016-7539   CVE-2016-7540  

This updates fixes many vulnerabilities in imagemagick: Various memory handling problems and cases of missing or incomplete input sanitising may result in denial of service or the execution of arbitrary code if malformed TIFF, WPG, RLE, RAW, PSD, Sun, PICT, VIFF, HDR, Meta, Quantum, PDB, DDS, DCM, EXIF, RGF or BMP files are processed. For the stable distribution (jessie), these problems have been fixed in version 8:6.8.9.9-5+deb8u4. For the unstable distribution (sid), these problems will be fixed soon. We recommend that you upgrade your imagemagick packages.

Source

Debian Security Advisory

DSA-3652-1 imagemagick -- security update

Date Reported:
25 Aug 2016
Affected Packages:
imagemagick
Vulnerable:
Yes
Security database references:
In the Debian bugtracking system: Bug 832885, Bug 832887, Bug 832888, Bug 832968, Bug 833003, Bug 832474, Bug 832475, Bug 832464.
In Mitre's CVE dictionary: CVE-2014-9907, CVE-2015-8957, CVE-2015-8958, CVE-2015-8959, CVE-2016-4562, CVE-2016-4563, CVE-2016-4564, CVE-2016-5010, CVE-2016-5687, CVE-2016-5688, CVE-2016-5689, CVE-2016-5690, CVE-2016-5691, CVE-2016-5841, CVE-2016-5842, CVE-2016-6491, CVE-2016-6823, CVE-2016-7513, CVE-2016-7514, CVE-2016-7515, CVE-2016-7516, CVE-2016-7517, CVE-2016-7518, CVE-2016-7519, CVE-2016-7520, CVE-2016-7521, CVE-2016-7522, CVE-2016-7523, CVE-2016-7524, CVE-2016-7525, CVE-2016-7526, CVE-2016-7527, CVE-2016-7528, CVE-2016-7529, CVE-2016-7530, CVE-2016-7531, CVE-2016-7532, CVE-2016-7533, CVE-2016-7534, CVE-2016-7535, CVE-2016-7536, CVE-2016-7537, CVE-2016-7538, CVE-2016-7539, CVE-2016-7540.
More information:

This updates fixes many vulnerabilities in imagemagick: Various memory handling problems and cases of missing or incomplete input sanitising may result in denial of service or the execution of arbitrary code if malformed TIFF, WPG, RLE, RAW, PSD, Sun, PICT, VIFF, HDR, Meta, Quantum, PDB, DDS, DCM, EXIF, RGF or BMP files are processed.

For the stable distribution (jessie), these problems have been fixed in version 8:6.8.9.9-5+deb8u4.

For the unstable distribution (sid), these problems will be fixed soon.

We recommend that you upgrade your imagemagick packages.

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook

Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started