CVE-2007-1797
Published: 2 April 2007
Multiple integer overflows in ImageMagick before 6.3.3-5 allow remote attackers to execute arbitrary code via (1) a crafted DCM image, which results in a heap-based overflow in the ReadDCMImage function, or (2) the (a) colors or (b) comments field in a crafted XWD image, which results in a heap-based overflow in the ReadXWDImage function, different issues than CVE-2007-1667.
Priority
Status
Package | Release | Status |
---|---|---|
graphicsmagick Launchpad, Ubuntu, Debian |
dapper |
Does not exist
|
edgy |
Ignored
(end of life, was needed)
|
|
feisty |
Ignored
(end of life, was needed)
|
|
gutsy |
Released
(1.1.8-1)
|
|
hardy |
Released
(1.1.8-1)
|
|
upstream |
Needs triage
|
|
imagemagick Launchpad, Ubuntu, Debian |
dapper |
Released
(6.2.4.5-0.6ubuntu0.6)
|
edgy |
Released
(6.2.4.5.dfsg1-0.10ubuntu0.3)
|
|
feisty |
Released
(6.2.4.5.dfsg1-0.14ubuntu0.1)
|
|
gutsy |
Released
(6.2.4.5.dfsg1-1ubuntu1)
|
|
hardy |
Released
(6.2.4.5.dfsg1-1ubuntu1)
|
|
upstream |
Needs triage
|