PublicDate: 2006-08-15 23:04:00 UTC
Candidate: CVE-2006-4144
References:
 https://ubuntu.com/security/notices/USN-337-1
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4144
Description:
 Integer overflow in the ReadSGIImage function in sgi.c in ImageMagick
 before 6.2.9 allows user-assisted attackers to cause a denial of service
 (crash) and possibly execute arbitrary code via large (1) bytes_per_pixel,
 (2) columns, and (3) rows values, which trigger a heap-based buffer
 overflow.
Ubuntu-Description:
Notes:
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs:
dapper_graphicsmagick: DNE
edgy_graphicsmagick: released (1.1.7-8)
feisty_graphicsmagick: released (1.1.7-8)
devel_graphicsmagick: released (1.1.7-8)
dapper_imagemagick: released (6.2.4.5-0.6ubuntu0.6)
edgy_imagemagick: released (6.2.4.5.dfsg1-0.10ubuntu0.3)
feisty_imagemagick: released (6.2.4.5.dfsg1-0.14ubuntu0.1)
devel_imagemagick: released (6.2.4.5.dfsg1-1ubuntu1)
upstream_graphicsmagick: needs-triage
upstream_imagemagick: needs-triage