Launchpad.net

CVE 2007-4987

Off-by-one error in the ReadBlobString function in blob.c in ImageMagick before 6.3.5-9 allows context-dependent attackers to execute arbitrary code via a crafted image file, which triggers the writing of a '\0' character to an out-of-bounds address.

Related bugs and status

CVE-2007-4987 (Candidate) is related to these bugs:

Bug #144425: [ImageMagick] security issues with releases prior to 6.3.5-9

		In	Importance	Status
144425	[ImageMagick] security issues with releases prior to 6.3.5-9	imagemagick (Ubuntu)	Medium	Fix Released
144425	[ImageMagick] security issues with releases prior to 6.3.5-9	imagemagick (Ubuntu Dapper)	Medium	Fix Released
144425	[ImageMagick] security issues with releases prior to 6.3.5-9	imagemagick (Ubuntu Gutsy)	Medium	Fix Released
144425	[ImageMagick] security issues with releases prior to 6.3.5-9	imagemagick (Ubuntu Edgy)	Medium	Fix Released
144425	[ImageMagick] security issues with releases prior to 6.3.5-9	imagemagick (Ubuntu Feisty)	Medium	Fix Released
144425	[ImageMagick] security issues with releases prior to 6.3.5-9	graphicsmagick (Ubuntu)	Medium	Fix Released
144425	[ImageMagick] security issues with releases prior to 6.3.5-9	graphicsmagick (Ubuntu Dapper)	Medium	Won't Fix
144425	[ImageMagick] security issues with releases prior to 6.3.5-9	graphicsmagick (Ubuntu Edgy)	Medium	Won't Fix
144425	[ImageMagick] security issues with releases prior to 6.3.5-9	graphicsmagick (Ubuntu Feisty)	Medium	Won't Fix
144425	[ImageMagick] security issues with releases prior to 6.3.5-9	graphicsmagick (Ubuntu Gutsy)	Medium	Won't Fix
144425	[ImageMagick] security issues with releases prior to 6.3.5-9	graphicsmagick (Debian)	Unknown	Fix Released
144425	[ImageMagick] security issues with releases prior to 6.3.5-9	graphicsmagick (Gentoo Linux)	High	Fix Released

See the

CVE page on Mitre.org for more details.

References

IDEFENSE: 20070919 Multiple Vend...
MLIST: [Magick-announce] 2007...
BID: 25766
CONFIRM: http://www.imagemagick...
SECTRACK: 1018729
SECUNIA: 26926
UBUNTU: USN-523-1
SECUNIA: 27048
CONFIRM: https://issues.rpath.c...
SECUNIA: 27309
CONFIRM: http://bugs.gentoo.org...
GENTOO: GLSA-200710-27
SECUNIA: 27364
SUSE: SUSE-SR:2007:023
SECUNIA: 27439
MANDRIVA: MDVSA-2008:035
SECUNIA: 28721
DEBIAN: DSA-1858
SECUNIA: 36260
VUPEN: ADV-2007-3245
XF: imagemagick-readblogst...
BUGTRAQ: 20071112 FLEA-2007-006...