Linux Compatible
  • News
    • Channels
    • Archive
    • Search
    • Submit
  • Articles
    • Categories
  • Knowledgebase
  • Compatibility
    • Search
  • Links
  • Forums
  • Twitter
Advertisement

Latest News
[ Windows | Linux | Apple ]

· MySQL 8.0.11 released
· Popular YouTuber Says Apple Won't Fix His iMac Pro Damaged While Disassembled and more
· GD Update (SSA:2018-108-01) for Slackware
· Wieshark and Opencv Updates for Debian 7 LTS
· 16 Oracle Linux Updates
· WebKitGTK+ 2.21.1 released
· Dell XPS 13 (9370) Review and more
· macOS 10.13.5 beta 2 now available for developers
· Oracle Linux 7 Update 5 released
· GNOME 3.29.1 released

Upcoming News
· Samsung 860 Pro SSD Review @ Vortez
· Raijintek Orcus 240 @ TechPowerUp
· Team Group Cardea Zero 240 GB @ TechPowerUp
· Guru3D Rig of the Month - January 2018
· Cooler Master MK750 Review @ Vortez
· Seagate Skyhawk 10TB SATA III HDD Review
· Vulkan Continues To Show Its Gaming Strength On Low-End Hardware
· Seagate IronWolf ST12000VN0007 12TB Hard Drive Review @ APH Networks
· Sennheiser Game One @ TechPowerUp
· be quiet! Straight Power 11 1000W Power Supply Review

Linux Compatibility
· Brother DCP-L2540DN
· Sound Blaster E5
· WD Elements 500GB external hard drive
· Canon D660U Flatbad scanner
· Umax Astra 4500 USB Scanner
· Logitech QuickCam Pro 4000
· Dell Latitude E6420
· Creative Sound Blaster Z
· Photosmart 5520
· TB-5300 Slimline Design Tablet

New Forum Topics
· Dale
by: Dale Blinco
on: 2018-02-05 00:26
1 replies, 1191 views

· modem driver needed
by: jongiffen777
on: 2017-12-13 11:11
1 replies, 2364 views

· Need a decent browser for XP Pro!
by: percy
on: 2017-12-05 11:02
2 replies, 4248 views

· Comodo Time Machine + Faronics Deep Freeze
by: Jabberwocky
on: 2017-11-15 23:17
1 replies, 2854 views

· Linux compatablity
by: ibme
on: 2017-10-04 18:05
1 replies, 4768 views

News Channels
· Drivers
· Guides
· Reviews
· Security
· Software
· Press Release
· Updates
· Interviews
· Linux
· General
· Debian
· Red Hat
· Slackware
· Gentoo
· Mandriva
· White Box
· SUSE
· GNOME
· KDE
· CentOS
· Ubuntu
· MEPIS
· Android
· Oracle Linux
· Arch Linux

What's New
Login to see an overview of all news stories since your last visit.

Welcome to our website

To take full advantage of all features you need to login or register. Registration is completely free and takes only a few seconds.

Linux Compatible » News » October 2004 » RHSA-2004:480-01: Updated ImageMagick packages fix security vulnerability

RHSA-2004:480-01: Updated ImageMagick packages fix security vulnerability

Posted by Philipp Esselbach on: 10/20/2004 02:53 PM [ Print | 0 comment(s) ]

Updated ImageMagick packages are available for Red Hat Enterprise Linux 3

----------------------------------------------------------------------
Red Hat Security Advisory

Synopsis: Updated ImageMagick packages fix security vulnerability
Advisory ID: RHSA-2004:480-01
Issue date: 2004-10-20
Updated on: 2004-10-20
Product: Red Hat Enterprise Linux
CVE Names: CAN-2004-0827
- ---------------------------------------------------------------------

1. Summary:

Updated ImageMagick packages that fix a BMP loader vulnerability are now available.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Desktop version 3 - i386, x86_64
Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64




3. Problem description:

ImageMagick(TM) is an image display and manipulation tool for the X Window System.

A heap overflow flaw has been discovered in the ImageMagick image handler. An attacker could create a carefully crafted BMP file in such a way that it could cause ImageMagick to execute arbitrary code when processing the image. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2004-0827 to this issue.

Users of ImageMagick should upgrade to this updated package, which contains a backported patch, and is not vulnerable to this issue.

4. Solution:

Before applying this update, make sure that all previously-released errata relevant to your system have been applied. Use Red Hat Network to download and update your packages. To launch the Red Hat Update Agent, use the following command:

up2date

For information on how to install packages manually, refer to the following Web page for the System Administration or Customization guide specific to your system:

http://www.redhat.com/docs/manuals/enterprise/

5. Bug IDs fixed (http://bugzilla.redhat.com/ for more info):

130807 - CAN-2004-0827 heap overflow in BMP decoder

6. RPMs required:

Red Hat Enterprise Linux AS version 3:

SRPMS:
ftp://updates.redhat.com/enterprise/3AS/en/os/SRPMS/ImageMagick-5.5.6-6.src.rpm
045e0e91f0ed8f8dec140bf3747b4077 ImageMagick-5.5.6-6.src.rpm

i386:
10ce65b271a96aa9936dde261101950f ImageMagick-5.5.6-6.i386.rpm
77116e9d76af4794f483762d9f20e4ea ImageMagick-c++-5.5.6-6.i386.rpm
57ec4d864f39319124aec5f5e4b43280 ImageMagick-c++-devel-5.5.6-6.i386.rpm
ae1f3e70590fffb590956d8fdce9bfcc ImageMagick-devel-5.5.6-6.i386.rpm
9d5f480fdd133748dcddc33a763d490f ImageMagick-perl-5.5.6-6.i386.rpm

ia64:
e20e8750e25c70bbb816e927f630c267 ImageMagick-5.5.6-6.ia64.rpm
3116fc8ca9bd813065000825ab3a1bad ImageMagick-c++-5.5.6-6.ia64.rpm
b5dc78df650c171dea8e962c79b1efe0 ImageMagick-c++-devel-5.5.6-6.ia64.rpm
f65e3ce07d6b67d238f5a85ab020885f ImageMagick-devel-5.5.6-6.ia64.rpm
09f10be40bd9a88f7e0ff6d59e34e70f ImageMagick-perl-5.5.6-6.ia64.rpm

ppc:
46f51cb3c082370bd2f1b9af9415ad7a ImageMagick-5.5.6-6.ppc.rpm
03f63acc78df42657e6891077d3467f1 ImageMagick-c++-5.5.6-6.ppc.rpm
09fe58f083ffa8e2941202821c0534b5 ImageMagick-c++-devel-5.5.6-6.ppc.rpm
33df253831ce0cd8708afc20f589abbd ImageMagick-devel-5.5.6-6.ppc.rpm
61477cb1d82fd9079254b995aca7e678 ImageMagick-perl-5.5.6-6.ppc.rpm

s390:
757608ce8939fe166074c93913c7b8a2 ImageMagick-5.5.6-6.s390.rpm
af8965782a23f7d484df3293eb214c0d ImageMagick-c++-5.5.6-6.s390.rpm
00c94923b096cf548592ed6f6f16f745 ImageMagick-c++-devel-5.5.6-6.s390.rpm
c07a76f6457cb277518c17c64d074321 ImageMagick-devel-5.5.6-6.s390.rpm
9faafb72664e87bb2f191fc60fad75b5 ImageMagick-perl-5.5.6-6.s390.rpm

s390x:
55a76a77830de834060f039cc176e4cd ImageMagick-5.5.6-6.s390x.rpm
8ccdb45d34ff40712ab9f6d0a19fbe86 ImageMagick-c++-5.5.6-6.s390x.rpm
e7eb1807788551defe5f50df2763fce1 ImageMagick-c++-devel-5.5.6-6.s390x.rpm
c74e048ac339446226b5f7c6d76b97f5 ImageMagick-devel-5.5.6-6.s390x.rpm
e05b50851348d5c370901e7d2f3d16e4 ImageMagick-perl-5.5.6-6.s390x.rpm

x86_64:
ac2398a57cf51e8a69dd8c5390f59ff9 ImageMagick-5.5.6-6.x86_64.rpm
16d4ae779d2ef69aea9d863725022a21 ImageMagick-c++-5.5.6-6.x86_64.rpm
30c42ec86f195228c268c24001f45c9a ImageMagick-c++-devel-5.5.6-6.x86_64.rpm
b1f941d2a971a417d858ff32f188bf6c ImageMagick-devel-5.5.6-6.x86_64.rpm
4dea1aa57f513c5e84c3900d455a4637 ImageMagick-perl-5.5.6-6.x86_64.rpm

Red Hat Desktop version 3:

SRPMS:
ftp://updates.redhat.com/enterprise/3desktop/en/os/SRPMS/ImageMagick-5.5.6-6.src.rpm
045e0e91f0ed8f8dec140bf3747b4077 ImageMagick-5.5.6-6.src.rpm

i386:
10ce65b271a96aa9936dde261101950f ImageMagick-5.5.6-6.i386.rpm
77116e9d76af4794f483762d9f20e4ea ImageMagick-c++-5.5.6-6.i386.rpm
57ec4d864f39319124aec5f5e4b43280 ImageMagick-c++-devel-5.5.6-6.i386.rpm
ae1f3e70590fffb590956d8fdce9bfcc ImageMagick-devel-5.5.6-6.i386.rpm
9d5f480fdd133748dcddc33a763d490f ImageMagick-perl-5.5.6-6.i386.rpm

x86_64:
ac2398a57cf51e8a69dd8c5390f59ff9 ImageMagick-5.5.6-6.x86_64.rpm
16d4ae779d2ef69aea9d863725022a21 ImageMagick-c++-5.5.6-6.x86_64.rpm
30c42ec86f195228c268c24001f45c9a ImageMagick-c++-devel-5.5.6-6.x86_64.rpm
b1f941d2a971a417d858ff32f188bf6c ImageMagick-devel-5.5.6-6.x86_64.rpm
4dea1aa57f513c5e84c3900d455a4637 ImageMagick-perl-5.5.6-6.x86_64.rpm

Red Hat Enterprise Linux ES version 3:

SRPMS:
ftp://updates.redhat.com/enterprise/3ES/en/os/SRPMS/ImageMagick-5.5.6-6.src.rpm
045e0e91f0ed8f8dec140bf3747b4077 ImageMagick-5.5.6-6.src.rpm

i386:
10ce65b271a96aa9936dde261101950f ImageMagick-5.5.6-6.i386.rpm
77116e9d76af4794f483762d9f20e4ea ImageMagick-c++-5.5.6-6.i386.rpm
57ec4d864f39319124aec5f5e4b43280 ImageMagick-c++-devel-5.5.6-6.i386.rpm
ae1f3e70590fffb590956d8fdce9bfcc ImageMagick-devel-5.5.6-6.i386.rpm
9d5f480fdd133748dcddc33a763d490f ImageMagick-perl-5.5.6-6.i386.rpm

ia64:
e20e8750e25c70bbb816e927f630c267 ImageMagick-5.5.6-6.ia64.rpm
3116fc8ca9bd813065000825ab3a1bad ImageMagick-c++-5.5.6-6.ia64.rpm
b5dc78df650c171dea8e962c79b1efe0 ImageMagick-c++-devel-5.5.6-6.ia64.rpm
f65e3ce07d6b67d238f5a85ab020885f ImageMagick-devel-5.5.6-6.ia64.rpm
09f10be40bd9a88f7e0ff6d59e34e70f ImageMagick-perl-5.5.6-6.ia64.rpm

x86_64:
ac2398a57cf51e8a69dd8c5390f59ff9 ImageMagick-5.5.6-6.x86_64.rpm
16d4ae779d2ef69aea9d863725022a21 ImageMagick-c++-5.5.6-6.x86_64.rpm
30c42ec86f195228c268c24001f45c9a ImageMagick-c++-devel-5.5.6-6.x86_64.rpm
b1f941d2a971a417d858ff32f188bf6c ImageMagick-devel-5.5.6-6.x86_64.rpm
4dea1aa57f513c5e84c3900d455a4637 ImageMagick-perl-5.5.6-6.x86_64.rpm

Red Hat Enterprise Linux WS version 3:

SRPMS:
ftp://updates.redhat.com/enterprise/3WS/en/os/SRPMS/ImageMagick-5.5.6-6.src.rpm
045e0e91f0ed8f8dec140bf3747b4077 ImageMagick-5.5.6-6.src.rpm

i386:
10ce65b271a96aa9936dde261101950f ImageMagick-5.5.6-6.i386.rpm
77116e9d76af4794f483762d9f20e4ea ImageMagick-c++-5.5.6-6.i386.rpm
57ec4d864f39319124aec5f5e4b43280 ImageMagick-c++-devel-5.5.6-6.i386.rpm
ae1f3e70590fffb590956d8fdce9bfcc ImageMagick-devel-5.5.6-6.i386.rpm
9d5f480fdd133748dcddc33a763d490f ImageMagick-perl-5.5.6-6.i386.rpm

ia64:
e20e8750e25c70bbb816e927f630c267 ImageMagick-5.5.6-6.ia64.rpm
3116fc8ca9bd813065000825ab3a1bad ImageMagick-c++-5.5.6-6.ia64.rpm
b5dc78df650c171dea8e962c79b1efe0 ImageMagick-c++-devel-5.5.6-6.ia64.rpm
f65e3ce07d6b67d238f5a85ab020885f ImageMagick-devel-5.5.6-6.ia64.rpm
09f10be40bd9a88f7e0ff6d59e34e70f ImageMagick-perl-5.5.6-6.ia64.rpm

x86_64:
ac2398a57cf51e8a69dd8c5390f59ff9 ImageMagick-5.5.6-6.x86_64.rpm
16d4ae779d2ef69aea9d863725022a21 ImageMagick-c++-5.5.6-6.x86_64.rpm
30c42ec86f195228c268c24001f45c9a ImageMagick-c++-devel-5.5.6-6.x86_64.rpm
b1f941d2a971a417d858ff32f188bf6c ImageMagick-devel-5.5.6-6.x86_64.rpm
4dea1aa57f513c5e84c3900d455a4637 ImageMagick-perl-5.5.6-6.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://www.redhat.com/security/team/key.html#package

7. References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0827

8. Contact:

The Red Hat security contact is secalert@redhat.com. More contact details at https://www.redhat.com/security/team/contact.html

Copyright 2004 Red Hat, Inc.


Bookmark and Share

« Microsoft, Swatch Offer New Wireless Watches · RHSA-2004:494-01: Updated ImageMagick packages fix security vulnerabilities »

Linux Compatible » News » October 2004 » RHSA-2004:480-01: Updated ImageMagick packages fix security vulnerability
All products mentioned are registered trademarks or trademarks of their respective owners.
© 2002-2018 Esselbach Internet Solutions - All Rights Reserved. Terms and privacy policy
Powered by Contentteller® Business Edition