Ubuntu Security Notice -


Recommended Posts

Ubuntu Security Notice - imagemagick vulnerability (USN-681-1)

===========================================================

Ubuntu Security Notice USN-681-1 December 01, 2008

imagemagick vulnerability

CVE-2008-1096

===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 6.06 LTS

Ubuntu 7.10

This advisory also applies to the corresponding versions of

Kubuntu, Edubuntu, and Xubuntu.

The problem can be corrected by upgrading your system to the

following package versions:

Ubuntu 6.06 LTS:

imagemagick 6:6.2.4.5-0.6ubuntu0.8

Ubuntu 7.10:

imagemagick 7:6.2.4.5.dfsg1-2ubuntu1.1

After a standard system upgrade you need to restart any applications that

use ImageMagick, such as OpenOffice.org and Inkscape, to effect the

necessary changes.

Details follow:

It was discovered that ImageMagick did not correctly handle certain

malformed XCF images. If a user were tricked into opening a specially

crafted image with an application that uses ImageMagick, an attacker

could cause a denial of service and possibly execute arbitrary code with

the user's privileges.

Updated packages for Ubuntu 6.06 LTS:

Source archives: http://www.net-security.org/advisory.php?id=9487

Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...