CVE 2007-4986
Multiple integer overflows in ImageMagick before 6.3.5-9 allow context-dependent attackers to execute arbitrary code via a crafted (1) .dcm, (2) .dib, (3) .xbm, (4) .xcf, or (5) .xwd image file, which triggers a heap-based buffer overflow.
Related bugs and status
CVE-2007-4986 (Candidate) is related to these bugs:
Bug #144425: [ImageMagick] security issues with releases prior to 6.3.5-9
Bug #204349: [FFe] Please sync graphicsmagick 1.1.11-1 from Debian(Unstable)
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
204349 | [FFe] Please sync graphicsmagick 1.1.11-1 from Debian(Unstable) | graphicsmagick (Ubuntu) | Medium | Fix Released |
See the
CVE page on Mitre.org
for more details.