Secunia Security Advisory 22998

Secunia Security Advisory 22998: Posted Nov 20, 2006; Authored by Secunia | Site secunia.com; Secunia Security Advisory - Debian has issued an update for imagemagick. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.; tags | advisory, denial of service, vulnerability; systems | linux, debian; SHA-256 | adddc731deba38c0a91f76bff197945bed1f93509badf9bebcc82c23235d67c7; Download | Favorite | View
Secunia Security Advisory 22998



----------------------------------------------------------------------

To improve our services to our customers, we have made a number of
additions to the Secunia Advisories and have started translating the
advisories to German.

The improvements will help our customers to get a better
understanding of how we reached our conclusions, how it was rated,
our thoughts on exploitation, attack vectors, and scenarios.

This includes:
* Reason for rating
* Extended description
* Extended solution
* Exploit code or links to exploit code
* Deep links

Read the full description:
http://corporate.secunia.com/products/48/?r=l

Contact Secunia Sales for more information:
http://corporate.secunia.com/how_to_buy/15/?r=l

----------------------------------------------------------------------

TITLE:
Debian update for imagemagick

SECUNIA ADVISORY ID:
SA22998

VERIFY ADVISORY:
http://secunia.com/advisories/22998/

CRITICAL:
Moderately critical

IMPACT:
DoS, System access

WHERE:
>From remote

OPERATING SYSTEM:
Debian GNU/Linux 3.1
http://secunia.com/product/5307/
Debian GNU/Linux unstable alias sid
http://secunia.com/product/530/

DESCRIPTION:
Debian has issued an update for imagemagick. This fixes some
vulnerabilities, which can be exploited by malicious people to cause
a DoS (Denial of Service) or potentially compromise a vulnerable
system.

For more information:
SA18261
SA21462
SA22572

SOLUTION:
Apply updated packages.

-- Debian GNU/Linux 3.1 alias sarge --

Source archives:

http://security.debian.org/pool/updates/main/i/imagemagick/imagemagick_6.0.6.2-2.8.dsc
Size/MD5 checksum: 881 0f3c7174962dcaf0be7b3027312d3438
http://security.debian.org/pool/updates/main/i/imagemagick/imagemagick_6.0.6.2-2.8.diff.gz
Size/MD5 checksum: 142001 c2be91d527c1714ee0ece93b090792c7
http://security.debian.org/pool/updates/main/i/imagemagick/imagemagick_6.0.6.2.orig.tar.gz
Size/MD5 checksum: 6824001 477a361ba0154cc2423726fab4a3f57c

Alpha architecture:

http://security.debian.org/pool/updates/main/i/imagemagick/imagemagick_6.0.6.2-2.8_alpha.deb
Size/MD5 checksum: 1469720 b311ede0075f36157e9c9c244a382cb6
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick++6_6.0.6.2-2.8_alpha.deb
Size/MD5 checksum: 173974 34306082902f34914d4d0823f0e153c8
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick++6-dev_6.0.6.2-2.8_alpha.deb
Size/MD5 checksum: 288800 fa2b7d2ad5708e66fbc5c14f830bace0
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick6_6.0.6.2-2.8_alpha.deb
Size/MD5 checksum: 1285588 cabe582c14962459c8bc8dffc7d3a516
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick6-dev_6.0.6.2-2.8_alpha.deb
Size/MD5 checksum: 2204442 080e9f6d25c7b1f1df10dd1828f85273
http://security.debian.org/pool/updates/main/i/imagemagick/perlmagick_6.0.6.2-2.8_alpha.deb
Size/MD5 checksum: 143902 98099204464269c5386244cb1fee775f

AMD64 architecture:

http://security.debian.org/pool/updates/main/i/imagemagick/imagemagick_6.0.6.2-2.8_amd64.deb
Size/MD5 checksum: 1466352 d50a197f3c3f0e15f1530d56177a1c72
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick++6_6.0.6.2-2.8_amd64.deb
Size/MD5 checksum: 163602 642d806539f42d3bd3645edb021bae16
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick++6-dev_6.0.6.2-2.8_amd64.deb
Size/MD5 checksum: 228744 9b7c462060e0769f1561da5dcfb32dee
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick6_6.0.6.2-2.8_amd64.deb
Size/MD5 checksum: 1194980 51182a82a05f1f47c435f246a21469ad
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick6-dev_6.0.6.2-2.8_amd64.deb
Size/MD5 checksum: 1550348 43d9d80bd42b3dc6f6d611a997a17c2e
http://security.debian.org/pool/updates/main/i/imagemagick/perlmagick_6.0.6.2-2.8_amd64.deb
Size/MD5 checksum: 231800 6375c61e8edc60fa928665cf45ec011c

ARM architecture:

http://security.debian.org/pool/updates/main/i/imagemagick/imagemagick_6.0.6.2-2.8_arm.deb
Size/MD5 checksum: 1466148 a0c6fcb562afa6d5f8736beda4dade43
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick++6_6.0.6.2-2.8_arm.deb
Size/MD5 checksum: 149342 9a184c8f6d3d204748ed30a1c57dbd1f
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick++6-dev_6.0.6.2-2.8_arm.deb
Size/MD5 checksum: 234806 0d4865aaf1dd850604ce9b728e65def6
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick6_6.0.6.2-2.8_arm.deb
Size/MD5 checksum: 1204646 02fbc1c7b8b98d1977e4861211f1255a
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick6-dev_6.0.6.2-2.8_arm.deb
Size/MD5 checksum: 1647698 cef197d1c2ce919413ab12bd1b99187a
http://security.debian.org/pool/updates/main/i/imagemagick/perlmagick_6.0.6.2-2.8_arm.deb
Size/MD5 checksum: 230484 5b5dbe487dc580a5f164cf862552ab4d

HP Precision architecture:

http://security.debian.org/pool/updates/main/i/imagemagick/imagemagick_6.0.6.2-2.8_hppa.deb
Size/MD5 checksum: 1468290 329777db0d2b061398268f9fd8d6a7a7
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick++6_6.0.6.2-2.8_hppa.deb
Size/MD5 checksum: 182170 e190aad821d4e96ba2b84fc4d3b49da8
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick++6-dev_6.0.6.2-2.8_hppa.deb
Size/MD5 checksum: 273890 434201d0f53175e739ce45addbe2ce01
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick6_6.0.6.2-2.8_hppa.deb
Size/MD5 checksum: 1404728 cfe2739dac2b84497a00f92b5c4b36ad
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick6-dev_6.0.6.2-2.8_hppa.deb
Size/MD5 checksum: 1827810 14e7e2febd80f1551cfa9b035ed9222c
http://security.debian.org/pool/updates/main/i/imagemagick/perlmagick_6.0.6.2-2.8_hppa.deb
Size/MD5 checksum: 243804 e4bfc17d51547976f7f4db09f6cc6997

Intel IA-32 architecture:

http://security.debian.org/pool/updates/main/i/imagemagick/imagemagick_6.0.6.2-2.8_i386.deb
Size/MD5 checksum: 1466106 0ee2e904990dbcbeee0b90c2fa95ac62
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick++6_6.0.6.2-2.8_i386.deb
Size/MD5 checksum: 164440 708d64c7a92419a98e7d305089b1b0c4
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick++6-dev_6.0.6.2-2.8_i386.deb
Size/MD5 checksum: 208932 eed51be1f03a91e624194e9dea211ff2
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick6_6.0.6.2-2.8_i386.deb
Size/MD5 checksum: 1172262 22f32c18dc71c7b24eff16f1fec1c243
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick6-dev_6.0.6.2-2.8_i386.deb
Size/MD5 checksum: 1507516 ea9e1148fa72e6be94462a46d30304b0
http://security.debian.org/pool/updates/main/i/imagemagick/perlmagick_6.0.6.2-2.8_i386.deb
Size/MD5 checksum: 233964 e47cbf76b993c0eb44adcf85e125d75c

Intel IA-64 architecture:

http://security.debian.org/pool/updates/main/i/imagemagick/imagemagick_6.0.6.2-2.8_ia64.deb
Size/MD5 checksum: 1468472 6b31e556cf944fe2d89ad8d2c09cc43a
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick++6_6.0.6.2-2.8_ia64.deb
Size/MD5 checksum: 188272 7bf4012fe64aa60c8aac88b263b620c4
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick++6-dev_6.0.6.2-2.8_ia64.deb
Size/MD5 checksum: 295958 dcf1b145b868414bd2357d21ace70fb2
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick6_6.0.6.2-2.8_ia64.deb
Size/MD5 checksum: 1605554 7ab0f7944f25bbaca6266e3bce816132
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick6-dev_6.0.6.2-2.8_ia64.deb
Size/MD5 checksum: 2132552 7324f4a81b5496cc7c9182ae2bb082fb
http://security.debian.org/pool/updates/main/i/imagemagick/perlmagick_6.0.6.2-2.8_ia64.deb
Size/MD5 checksum: 273506 fa943563a08e04b06c0632afe7f4bc92

Motorola 680x0 architecture:

http://security.debian.org/pool/updates/main/i/imagemagick/imagemagick_6.0.6.2-2.8_m68k.deb
Size/MD5 checksum: 1466154 1f5c2b36763032352c2b45144517a5b8
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick++6_6.0.6.2-2.8_m68k.deb
Size/MD5 checksum: 159998 624ebcd80f960f7227095411cbdfb90c
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick++6-dev_6.0.6.2-2.8_m68k.deb
Size/MD5 checksum: 210680 91b3bafec7f54823cb2720966fcc4825
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick6_6.0.6.2-2.8_m68k.deb
Size/MD5 checksum: 1073256 b7f77626db0631d990422a3cae43f517
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick6-dev_6.0.6.2-2.8_m68k.deb
Size/MD5 checksum: 1288834 fd7af651e4d2d5124b45228d30dc6737
http://security.debian.org/pool/updates/main/i/imagemagick/perlmagick_6.0.6.2-2.8_m68k.deb
Size/MD5 checksum: 226942 f097f5c845a1159029271cba7112141f

Big endian MIPS architecture:

http://security.debian.org/pool/updates/main/i/imagemagick/imagemagick_6.0.6.2-2.8_mips.deb
Size/MD5 checksum: 1490232 6aff49b4b30fc146abde3fcbefe85d5f
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick++6_6.0.6.2-2.8_mips.deb
Size/MD5 checksum: 155500 416074125be015d5c49a90ac032c5182
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick++6-dev_6.0.6.2-2.8_mips.deb
Size/MD5 checksum: 254800 b8f762578afa79b0210dec43547917a4
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick6_6.0.6.2-2.8_mips.deb
Size/MD5 checksum: 1119320 6c778533f22c4f7e7c1dd268b5b59c3a
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick6-dev_6.0.6.2-2.8_mips.deb
Size/MD5 checksum: 1704446 6855a0354042ab9b283bc3966f4f665f
http://security.debian.org/pool/updates/main/i/imagemagick/perlmagick_6.0.6.2-2.8_mips.deb
Size/MD5 checksum: 131304 74185bb1115a3bcd50085df4fac2e50f

Little endian MIPS architecture:

http://security.debian.org/pool/updates/main/i/imagemagick/imagemagick_6.0.6.2-2.8_mipsel.deb
Size/MD5 checksum: 1490202 bd3a8c344eb9927d656543c20d784f38
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick++6_6.0.6.2-2.8_mipsel.deb
Size/MD5 checksum: 151598 d903083280a2428e35516444c93c7d03
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick++6-dev_6.0.6.2-2.8_mipsel.deb
Size/MD5 checksum: 250056 7c7c6a65f433eee855e775b2e4eafcf3
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick6_6.0.6.2-2.8_mipsel.deb
Size/MD5 checksum: 1114750 13012fdd898b1aa77267f90b73563e50
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick6-dev_6.0.6.2-2.8_mipsel.deb
Size/MD5 checksum: 1667906 1aeb160d222b005e4103c715d964b0db
http://security.debian.org/pool/updates/main/i/imagemagick/perlmagick_6.0.6.2-2.8_mipsel.deb
Size/MD5 checksum: 130912 84b347ac516de3a89060c2e010a63cf0

PowerPC architecture:

http://security.debian.org/pool/updates/main/i/imagemagick/imagemagick_6.0.6.2-2.8_powerpc.deb
Size/MD5 checksum: 1471774 5e218bb6d5e36cf50c80ebbf77a56abe
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick++6_6.0.6.2-2.8_powerpc.deb
Size/MD5 checksum: 156748 4564f4918218c6e6c60fe587fd25d118
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick++6-dev_6.0.6.2-2.8_powerpc.deb
Size/MD5 checksum: 227722 5eba56a195be2aca1354fce454293a9f
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick6_6.0.6.2-2.8_powerpc.deb
Size/MD5 checksum: 1169510 92e5f7ca8fdf727e3a88a48262219c8e
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick6-dev_6.0.6.2-2.8_powerpc.deb
Size/MD5 checksum: 1684852 dc528d0a8080493c028bfca9665dcca3
http://security.debian.org/pool/updates/main/i/imagemagick/perlmagick_6.0.6.2-2.8_powerpc.deb
Size/MD5 checksum: 270502 cc408c569b2ce9d03576b4bd9bcb0cb0

IBM S/390 architecture:

http://security.debian.org/pool/updates/main/i/imagemagick/imagemagick_6.0.6.2-2.8_s390.deb
Size/MD5 checksum: 1467494 d1a9308491175f690a73f720caa7532b
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick++6_6.0.6.2-2.8_s390.deb
Size/MD5 checksum: 180486 6693ec2651a6f959a7f3f08efbeeea6f
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick++6-dev_6.0.6.2-2.8_s390.deb
Size/MD5 checksum: 230182 93a55b0f22a8339b13e2816a970ca102
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick6_6.0.6.2-2.8_s390.deb
Size/MD5 checksum: 1194334 e93c9333e1adc98bb7b99e6d2904d995
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick6-dev_6.0.6.2-2.8_s390.deb
Size/MD5 checksum: 1530886 db33e6bb01f6d927c02053f0cdd4bf89
http://security.debian.org/pool/updates/main/i/imagemagick/perlmagick_6.0.6.2-2.8_s390.deb
Size/MD5 checksum: 242114 51baccefbc53499f3514911521d76c76

Sun Sparc architecture:

http://security.debian.org/pool/updates/main/i/imagemagick/imagemagick_6.0.6.2-2.8_sparc.deb
Size/MD5 checksum: 1465694 d77c64a8e1c40678070a79011abcb8a5
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick++6_6.0.6.2-2.8_sparc.deb
Size/MD5 checksum: 161036 dadfff14cc51b0fb9561bf6469b61a3e
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick++6-dev_6.0.6.2-2.8_sparc.deb
Size/MD5 checksum: 224332 c8ebb9dbff86871dc12e3d5ae275bc12
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick6_6.0.6.2-2.8_sparc.deb
Size/MD5 checksum: 1249156 461cd22009434968fd4011481ce01044
http://security.debian.org/pool/updates/main/i/imagemagick/libmagick6-dev_6.0.6.2-2.8_sparc.deb
Size/MD5 checksum: 1684366 00b473e9bf9e417a4f0bcff753ed727b
http://security.debian.org/pool/updates/main/i/imagemagick/perlmagick_6.0.6.2-2.8_sparc.deb
Size/MD5 checksum: 230898 020b71df283f6391f3a15415be45a375

-- Debian GNU/Linux unstable alias sid --

Fixed in version 7:6.2.4.5.dfsg1-0.11.

ORIGINAL ADVISORY:
http://www.us.debian.org/security/2006/dsa-1213

OTHER REFERENCES:
SA18261:
http://secunia.com/advisories/18261/

SA21462:
http://secunia.com/advisories/21462

SA22572:
http://secunia.com/advisories/22572/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------
Top Authors In Last 30 Days

Red Hat 254 files
Ubuntu 59 files
LiquidWorm 28 files
indoushka 20 files
Debian 19 files
Apple 10 files
Google Security Research 7 files
Chokri Hammedi 3 files
Jann Horn 3 files
Emiliano Febbi 3 files
File Archives

Systems

AIX (430)
Apple (2,126)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,154)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,599)
HPUX (881)
iOS (393)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,754)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,190)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,958)
UNIX (9,473)
UnixWare (188)
Windows (6,784)
Other
Secunia Security Advisory 22998

Secunia Security Advisory 22998

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Secunia Security Advisory 22998

Share This

Secunia Security Advisory 22998

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems
