CVE-2007-1797
Published: 2 April 2007
Multiple integer overflows in ImageMagick before 6.3.3-5 allow remote attackers to execute arbitrary code via (1) a crafted DCM image, which results in a heap-based overflow in the ReadDCMImage function, or (2) the (a) colors or (b) comments field in a crafted XWD image, which results in a heap-based overflow in the ReadXWDImage function, different issues than CVE-2007-1667.
Priority
Status
| Package | Release | Status |
|---|---|---|
|
graphicsmagick Launchpad, Ubuntu, Debian |
dapper |
Does not exist
|
| edgy |
Ignored
(end of life, was needed)
|
|
| feisty |
Ignored
(end of life, was needed)
|
|
| gutsy |
Released
(1.1.8-1)
|
|
| hardy |
Released
(1.1.8-1)
|
|
| upstream |
Needs triage
|
|
|
imagemagick Launchpad, Ubuntu, Debian |
dapper |
Released
(6.2.4.5-0.6ubuntu0.6)
|
| edgy |
Released
(6.2.4.5.dfsg1-0.10ubuntu0.3)
|
|
| feisty |
Released
(6.2.4.5.dfsg1-0.14ubuntu0.1)
|
|
| gutsy |
Released
(6.2.4.5.dfsg1-1ubuntu1)
|
|
| hardy |
Released
(6.2.4.5.dfsg1-1ubuntu1)
|
|
| upstream |
Needs triage
|