PublicDateAtUSN: 2008-03-05
PublicDate: 2008-03-05 20:44:00 UTC
Candidate: CVE-2008-1096
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1096
 https://ubuntu.com/security/notices/USN-681-1
Description:
 The load_tile function in the XCF coder in coders/xcf.c in (1) ImageMagick
 6.2.8-0 and (2) GraphicsMagick (aka gm) 1.1.7 allows user-assisted remote
 attackers to cause a denial of service (crash) or possibly execute
 arbitrary code via a crafted .xcf file that triggers an out-of-bounds heap
 write, possibly related to the ScaleCharToQuantum function.
Ubuntu-Description:
Notes:
 jdstrand> Debian and Redhat bugs have test cases
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=414370
 https://bugzilla.redhat.com/show_bug.cgi?id=286411
Priority: medium
Discovered-by:
Assigned-to: mdeslaur
CVSS: 

Patches_imagemagick:
 vendor: https://rhn.redhat.com/errata/RHSA-2008-0145.html
upstream_imagemagick: needs-triage
dapper_imagemagick: released (6:6.2.4.5-0.6ubuntu0.8)
edgy_imagemagick: needed (reached end-of-life)
feisty_imagemagick: needed (reached end-of-life)
gutsy_imagemagick: released (7:6.2.4.5.dfsg1-2ubuntu1.1)
hardy_imagemagick: not-affected (7:6.3.7.9.dfsg1-2ubuntu1)
intrepid_imagemagick: not-affected (7:6.3.7.9.dfsg1-2ubuntu3)
jaunty_imagemagick: not-affected (7:6.4.5.4.dfsg1-1ubuntu1)
karmic_imagemagick: not-affected (7:6.4.5.4.dfsg1-1ubuntu1)
lucid_imagemagick: not-affected (7:6.4.5.4.dfsg1-1ubuntu1)
maverick_imagemagick: not-affected (7:6.4.5.4.dfsg1-1ubuntu1)
natty_imagemagick: not-affected (7:6.4.5.4.dfsg1-1ubuntu1)
oneiric_imagemagick: not-affected (7:6.4.5.4.dfsg1-1ubuntu1)
devel_imagemagick: not-affected (7:6.4.5.4.dfsg1-1ubuntu1)

Patches_graphicsmagick:
upstream_graphicsmagick: released (1.3.5-5.1)
dapper_graphicsmagick: DNE
edgy_graphicsmagick: needed (reached end-of-life)
feisty_graphicsmagick: needed (reached end-of-life)
gutsy_graphicsmagick: needed (reached end-of-life)
hardy_graphicsmagick: ignored (reached end-of-life)
intrepid_graphicsmagick: needed (reached end-of-life)
jaunty_graphicsmagick: released (1.1.11-3.2+lenny1build0.9.04.1)
karmic_graphicsmagick: released (1.3.5-5.1)
lucid_graphicsmagick: released (1.3.5-5.1)
maverick_graphicsmagick: released (1.3.5-5.1)
natty_graphicsmagick: released (1.3.5-5.1)
oneiric_graphicsmagick: released (1.3.5-5.1)
devel_graphicsmagick: released (1.3.5-5.1)