retitle 444267 CVE-2007-4985, CVE-2007-4986, CVE-2007-4987, CVE-2007-4988 multiple vulnerabilities retitle 444266 CVE-2007-4985, CVE-2007-4986, CVE-2007-4987, CVE-2007-4988 multiple vulnerabilities thanks
Hi, and 3 more vulnerabilities: CVE-2007-4986[0]: | Multiple integer overflows in ImageMagick before 6.3.5-9 | allow context-dependent attackers to execute arbitrary code | via a crafted (1) .dcm, (2) .dib, (3) .xbm, (4) .xcf, or (5) | .xwd image file, which triggers a heap-based buffer | overflow. CVE-2007-4987[1]: | Off-by-one error in the ReadBlobString function in blob.c in | ImageMagick before 6.3.5-9 allows context-dependent | attackers to execute arbitrary code via a crafted image | file, which triggers the writing of a '\0' character to an | out-of-bounds address. CVE-2007-4988[2]: | Sign extension error in the ReadDIBImage function in | ImageMagick before 6.3.5-9 allows context-dependent | attackers to execute arbitrary code via a crafted width | value in an image file, which triggers an integer overflow | and a heap-based buffer overflow. [0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4986 [1] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4987 [2] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4988 Kind regards Nico -- Nico Golde - http://ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF For security reasons, all text in this mail is double-rot13 encrypted.
pgpvBUPMg1FgE.pgp
Description: PGP signature
