Mandriva Update For Imagemagick MDVSA-2012:078 (imagemagick) Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

Multiple vulnerabilities has been found and corrected in imagemagick: A flaw was found in the way ImageMagick processed images with malformed Exchangeable image file format (Exif) metadata. An attacker could create a specially-crafted image file that, when opened by a victim, would cause ImageMagick to crash or, potentially, execute arbitrary code (CVE-2012-0247). The updated packages have been patched to correct these issues. Description truncated, for more information please check the Reference URL

Affected

imagemagick on Mandriva Linux 2011.0

Severity

Classification

CVE CVE-2012-0247, CVE-2012-0248, CVE-2012-0259, CVE-2012-0260, CVE-2012-1185, CVE-2012-1798
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Mandrake Security Advisory MDVSA-2009:055 (audacity)
Mandrake Security Advisory MDVSA-2009:113 (cyrus-sasl)
Mandrake Security Advisory MDVSA-2009:088 (wireshark)
Mandrake Security Advisory MDVSA-2009:005 (xterm)
Mandrake Security Advisory MDVSA-2009:104 (udev)

Mandriva Update for imagemagick MDVSA-2012:078 (imagemagick)

Take action and discover your vulnerabilities