PublicDate: 2007-09-24 22:17:00 UTC
Candidate: CVE-2007-4986
References: 
 https://ubuntu.com/security/notices/USN-523-1
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4986
Description:
 Multiple integer overflows in ImageMagick before 6.3.5-9 allow
 context-dependent attackers to execute arbitrary code via a crafted (1)
 .dcm, (2) .dib, (3) .xbm, (4) .xcf, or (5) .xwd image file, which triggers
 a heap-based buffer overflow.
Ubuntu-Description: 
Notes: 
Bugs: 
 https://bugs.launchpad.net/ubuntu/gutsy/+source/graphicsmagick/+bug/144425
Priority: medium
Discovered-by:
Assigned-to: kees
CVSS: 
upstream_imagemagick: released (6.3.5-9)
dapper_imagemagick: released (6:6.2.4.5-0.6ubuntu0.7)
edgy_imagemagick: released (7:6.2.4.5.dfsg1-0.10ubuntu0.4)
feisty_imagemagick: released (7:6.2.4.5.dfsg1-0.14ubuntu0.2)
gutsy_imagemagick: released (7:6.2.4.5.dfsg1-2ubuntu1)
hardy_imagemagick: released (7:6.2.4.5.dfsg1-2ubuntu1)
intrepid_imagemagick: released (7:6.2.4.5.dfsg1-2ubuntu1)
devel_imagemagick: released (7:6.2.4.5.dfsg1-2ubuntu1)
upstream_graphicsmagick: released (1.1.11)
dapper_graphicsmagick: DNE
edgy_graphicsmagick: needed (reached end-of-life)
feisty_graphicsmagick: needed (reached end-of-life)
gutsy_graphicsmagick: needed (reached end-of-life)
hardy_graphicsmagick: released (1.1.11-1)
intrepid_graphicsmagick: released (1.1.11-1)
devel_graphicsmagick: released (1.1.11-1)