Alerts This Week
Warning Icon 1 1,149
Alerts This Week
Warning Icon 1 1,149

Red Hat RHSA-2005:070-01 Moderate: ImageMagick Buffer Overflow

red hat
Calendar Grey March 23, 2005
Dist Redhat Esm H88
ImageMagick tools upgraded to address critical memory corruption vulnerabilities reported by the Red Hat Security Team.
Updated ImageMagick packages that fix a heap based buffer overflow are now available. This update has been rated as having moderate security impact by the Red Hat Security Respo...

Solution

Before applying this update, make sure that all previously-released errata relevant to your system have been applied. Use Red Hat Network to download and update your packages. To launch the Red Hat Update Agent, use the following command:

up2date

For information on how to install packages manually, refer to the following Web page for the System Administration or Customization guide specific to your system:

https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/10/

5. Bug IDs fixed (http://bugzilla.redhat.com/):

145111 - CAN-2005-0005 buffer overflow in ImageMagick 150185 - CAN-2005-0397 ImageMagick format string flaw 150312 - CAN-2005-0759 Denial of Service in .tiff images with invalid TAG 150315 - CAN-2005-0760 Accessing memory outside of image during decoding of TIFF 150323 - CAN-2005-0761 Bug in parsing PSD files 150327 - CAN-2005-0762 Buffer overflow in SGI parser

6. RPMs required:

Red Hat Enterprise Linux AS (Advanced Server) version 2.1:

SRPMS: 7ea876dd7ef145131e227b93c9477c3c ImageMagick-5.3.8-10.src.rpm

i386: e79b17a0964f3242afe48ea977cba811 ImageMagick-5.3.8-10.i386.rpm e613edc5a641b2826a17a014d23b561d ImageMagick-c++-5.3.8-10.i386.rpm 73699f8ab694fc27c901dd4b24c9bbd6 ImageMagick-c++-devel-5.3.8-10.i386.rpm 208653fea7be46c37dedb8f335d9bd29 ImageMagick-devel-5.3.8-10.i386.rpm dfef04e0cc1b1e411a79e67b03b905ac ImageMagick-perl-5.3.8-10.i386.rpm

ia64: de0ab5db6c53da4abc76ef97fd0983ec ImageMagick-5.3.8-10.ia64.rpm dc987dc03c1aba45a59051c59db887e0 ImageMagick-c++-5.3.8-10.ia64.rpm 313eab6adc60421b639c2cf76714f55a ImageMagick-c++-devel-5.3.8-10.ia64.rpm e964030f316ac822f1749352fa38a225 ImageMagick-devel-5.3.8-10.ia64.rpm 12124b283bc60518963483d957f71fb1 ImageMagick-perl-5.3.8-10.ia64.rpm

Red Hat Linux Advanced Workstation 2.1:

SRPMS: 7ea876dd7ef145131e227b93c9477c3c ImageMagick-5.3.8-10.src.rpm

ia64: de0ab5db6c53da4abc76ef97fd0983ec ImageMagick-5.3.8-10.ia64.rpm dc987dc03c1aba45a59051c59db887e0 ImageMagick-c++-5.3.8-10.ia64.rpm 313eab6adc60421b639c2cf76714f55a ImageMagick-c++-devel-5.3.8-10.ia64.rpm e964030f316ac822f1749352fa38a225 ImageMagick-devel-5.3.8-10.ia64.rpm 12124b283bc60518963483d957f71fb1 ImageMagick-perl-5.3.8-10.ia64.rpm

Red Hat Enterprise Linux ES version 2.1:

SRPMS: 7ea876dd7ef145131e227b93c9477c3c ImageMagick-5.3.8-10.src.rpm

i386: e79b17a0964f3242afe48ea977cba811 ImageMagick-5.3.8-10.i386.rpm e613edc5a641b2826a17a014d23b561d ImageMagick-c++-5.3.8-10.i386.rpm 73699f8ab694fc27c901dd4b24c9bbd6 ImageMagick-c++-devel-5.3.8-10.i386.rpm 208653fea7be46c37dedb8f335d9bd29 ImageMagick-devel-5.3.8-10.i386.rpm dfef04e0cc1b1e411a79e67b03b905ac ImageMagick-perl-5.3.8-10.i386.rpm

Red Hat Enterprise Linux WS version 2.1:

SRPMS: 7ea876dd7ef145131e227b93c9477c3c ImageMagick-5.3.8-10.src.rpm

i386: e79b17a0964f3242afe48ea977cba811 ImageMagick-5.3.8-10.i386.rpm e613edc5a641b2826a17a014d23b561d ImageMagick-c++-5.3.8-10.i386.rpm 73699f8ab694fc27c901dd4b24c9bbd6 ImageMagick-c++-devel-5.3.8-10.i386.rpm 208653fea7be46c37dedb8f335d9bd29 ImageMagick-devel-5.3.8-10.i386.rpm dfef04e0cc1b1e411a79e67b03b905ac ImageMagick-perl-5.3.8-10.i386.rpm

Red Hat Enterprise Linux AS version 3:

SRPMS: c9df74ebf9e921c9a254015e9a60da68 ImageMagick-5.5.6-13.src.rpm

i386: e96c043b59ad808214398d62765884b3 ImageMagick-5.5.6-13.i386.rpm ca5a5de88dbce63e4b68d0813dd0aa0b ImageMagick-c++-5.5.6-13.i386.rpm 571d4b8252cd09388e811dab7b7d420a ImageMagick-c++-devel-5.5.6-13.i386.rpm d52da9fea241e7069834e43870d6e305 ImageMagick-devel-5.5.6-13.i386.rpm 0c410c10953a8641a2c58cdd79590318 ImageMagick-perl-5.5.6-13.i386.rpm

ia64: 57266d92716e2e72c4758df06c7078b1 ImageMagick-5.5.6-13.ia64.rpm e96c043b59ad808214398d62765884b3 ImageMagick-5.5.6-13.i386.rpm 97caf495f60b7d27b2da35e17d91b806 ImageMagick-c++-5.5.6-13.ia64.rpm ca5a5de88dbce63e4b68d0813dd0aa0b ImageMagick-c++-5.5.6-13.i386.rpm 439e8b7a4c60e7a8d3f21438aa400667 ImageMagick-c++-devel-5.5.6-13.ia64.rpm 50f8e9f478f5888153ddc4a5542250b0 ImageMagick-devel-5.5.6-13.ia64.rpm 99c88878747e363fcb12ba1edb15bb76 ImageMagick-perl-5.5.6-13.ia64.rpm

ppc: f5c8817d0a4c7cfc309ffc91f88536cf ImageMagick-5.5.6-13.ppc.rpm 9d50784dc7ba6f7442d91d19d4ced50d ImageMagick-5.5.6-13.ppc64.rpm 6ec612e90b6a29e49fc9dad40632e05b ImageMagick-c++-5.5.6-13.ppc.rpm 4307b341167d18b89ec07477044da9cf ImageMagick-c++-5.5.6-13.ppc64.rpm 2a110d90ccf8fe7de4f7c21c95076d8a ImageMagick-c++-devel-5.5.6-13.ppc.rpm b7497b642ca0781a97ada5078d8c82d3 ImageMagick-devel-5.5.6-13.ppc.rpm f50e182783d0fe2a316e44f77813501f ImageMagick-perl-5.5.6-13.ppc.rpm

s390: ffdc5754ae7f12c66b1f4dba743678df ImageMagick-5.5.6-13.s390.rpm 5ab787e7742193fd5ab09d70306afda1 ImageMagick-c++-5.5.6-13.s390.rpm fa6a3166f01de5e3af7f6dffa4c61378 ImageMagick-c++-devel-5.5.6-13.s390.rpm a4efd895558315a4b37b977c07e392c2 ImageMagick-devel-5.5.6-13.s390.rpm 8ef03012a946a11d29c8990d782f5160 ImageMagick-perl-5.5.6-13.s390.rpm

s390x: 29cb46983c1f8e6efe0663b0a2b8a6d4 ImageMagick-5.5.6-13.s390x.rpm ffdc5754ae7f12c66b1f4dba743678df ImageMagick-5.5.6-13.s390.rpm 68fba7343df00dad18bfd44da9fd86fc ImageMagick-c++-5.5.6-13.s390x.rpm 5ab787e7742193fd5ab09d70306afda1 ImageMagick-c++-5.5.6-13.s390.rpm b2856e4eea04fc5113213361ae38e492 ImageMagick-c++-devel-5.5.6-13.s390x.rpm 159972f15e0e249ab2ef742400f7fedd ImageMagick-devel-5.5.6-13.s390x.rpm aabd863febeffaafb913d0513f9152c4 ImageMagick-perl-5.5.6-13.s390x.rpm

x86_64: d4e3cfc3f690b5f0a96660eb8f15857f ImageMagick-5.5.6-13.x86_64.rpm e96c043b59ad808214398d62765884b3 ImageMagick-5.5.6-13.i386.rpm aabcec7ef0e8545b170a86246114bc64 ImageMagick-c++-5.5.6-13.x86_64.rpm ca5a5de88dbce63e4b68d0813dd0aa0b ImageMagick-c++-5.5.6-13.i386.rpm 70e707a934f7c674180d144dc54750c7 ImageMagick-c++-devel-5.5.6-13.x86_64.rpm 3a17b125eb8909661f2d0790c788cf4b ImageMagick-devel-5.5.6-13.x86_64.rpm 9581f193326fb69a826aba2db00c6d98 ImageMagick-perl-5.5.6-13.x86_64.rpm

Red Hat Desktop version 3:

SRPMS: c9df74ebf9e921c9a254015e9a60da68 ImageMagick-5.5.6-13.src.rpm

i386: e96c043b59ad808214398d62765884b3 ImageMagick-5.5.6-13.i386.rpm ca5a5de88dbce63e4b68d0813dd0aa0b ImageMagick-c++-5.5.6-13.i386.rpm 571d4b8252cd09388e811dab7b7d420a ImageMagick-c++-devel-5.5.6-13.i386.rpm d52da9fea241e7069834e43870d6e305 ImageMagick-devel-5.5.6-13.i386.rpm 0c410c10953a8641a2c58cdd79590318 ImageMagick-perl-5.5.6-13.i386.rpm

x86_64: d4e3cfc3f690b5f0a96660eb8f15857f ImageMagick-5.5.6-13.x86_64.rpm e96c043b59ad808214398d62765884b3 ImageMagick-5.5.6-13.i386.rpm aabcec7ef0e8545b170a86246114bc64 ImageMagick-c++-5.5.6-13.x86_64.rpm ca5a5de88dbce63e4b68d0813dd0aa0b ImageMagick-c++-5.5.6-13.i386.rpm 70e707a934f7c674180d144dc54750c7 ImageMagick-c++-devel-5.5.6-13.x86_64.rpm 3a17b125eb8909661f2d0790c788cf4b ImageMagick-devel-5.5.6-13.x86_64.rpm 9581f193326fb69a826aba2db00c6d98 ImageMagick-perl-5.5.6-13.x86_64.rpm

Red Hat Enterprise Linux ES version 3:

SRPMS: c9df74ebf9e921c9a254015e9a60da68 ImageMagick-5.5.6-13.src.rpm

i386: e96c043b59ad808214398d62765884b3 ImageMagick-5.5.6-13.i386.rpm ca5a5de88dbce63e4b68d0813dd0aa0b ImageMagick-c++-5.5.6-13.i386.rpm 571d4b8252cd09388e811dab7b7d420a ImageMagick-c++-devel-5.5.6-13.i386.rpm d52da9fea241e7069834e43870d6e305 ImageMagick-devel-5.5.6-13.i386.rpm 0c410c10953a8641a2c58cdd79590318 ImageMagick-perl-5.5.6-13.i386.rpm

ia64: 57266d92716e2e72c4758df06c7078b1 ImageMagick-5.5.6-13.ia64.rpm e96c043b59ad808214398d62765884b3 ImageMagick-5.5.6-13.i386.rpm 97caf495f60b7d27b2da35e17d91b806 ImageMagick-c++-5.5.6-13.ia64.rpm ca5a5de88dbce63e4b68d0813dd0aa0b ImageMagick-c++-5.5.6-13.i386.rpm 439e8b7a4c60e7a8d3f21438aa400667 ImageMagick-c++-devel-5.5.6-13.ia64.rpm 50f8e9f478f5888153ddc4a5542250b0 ImageMagick-devel-5.5.6-13.ia64.rpm 99c88878747e363fcb12ba1edb15bb76 ImageMagick-perl-5.5.6-13.ia64.rpm

x86_64: d4e3cfc3f690b5f0a96660eb8f15857f ImageMagick-5.5.6-13.x86_64.rpm e96c043b59ad808214398d62765884b3 ImageMagick-5.5.6-13.i386.rpm aabcec7ef0e8545b170a86246114bc64 ImageMagick-c++-5.5.6-13.x86_64.rpm ca5a5de88dbce63e4b68d0813dd0aa0b ImageMagick-c++-5.5.6-13.i386.rpm 70e707a934f7c674180d144dc54750c7 ImageMagick-c++-devel-5.5.6-13.x86_64.rpm 3a17b125eb8909661f2d0790c788cf4b ImageMagick-devel-5.5.6-13.x86_64.rpm 9581f193326fb69a826aba2db00c6d98 ImageMagick-perl-5.5.6-13.x86_64.rpm

Red Hat Enterprise Linux WS version 3:

SRPMS: c9df74ebf9e921c9a254015e9a60da68 ImageMagick-5.5.6-13.src.rpm

i386: e96c043b59ad808214398d62765884b3 ImageMagick-5.5.6-13.i386.rpm ca5a5de88dbce63e4b68d0813dd0aa0b ImageMagick-c++-5.5.6-13.i386.rpm 571d4b8252cd09388e811dab7b7d420a ImageMagick-c++-devel-5.5.6-13.i386.rpm d52da9fea241e7069834e43870d6e305 ImageMagick-devel-5.5.6-13.i386.rpm 0c410c10953a8641a2c58cdd79590318 ImageMagick-perl-5.5.6-13.i386.rpm

ia64: 57266d92716e2e72c4758df06c7078b1 ImageMagick-5.5.6-13.ia64.rpm e96c043b59ad808214398d62765884b3 ImageMagick-5.5.6-13.i386.rpm 97caf495f60b7d27b2da35e17d91b806 ImageMagick-c++-5.5.6-13.ia64.rpm ca5a5de88dbce63e4b68d0813dd0aa0b ImageMagick-c++-5.5.6-13.i386.rpm 439e8b7a4c60e7a8d3f21438aa400667 ImageMagick-c++-devel-5.5.6-13.ia64.rpm 50f8e9f478f5888153ddc4a5542250b0 ImageMagick-devel-5.5.6-13.ia64.rpm 99c88878747e363fcb12ba1edb15bb76 ImageMagick-perl-5.5.6-13.ia64.rpm

x86_64: d4e3cfc3f690b5f0a96660eb8f15857f ImageMagick-5.5.6-13.x86_64.rpm e96c043b59ad808214398d62765884b3 ImageMagick-5.5.6-13.i386.rpm aabcec7ef0e8545b170a86246114bc64 ImageMagick-c++-5.5.6-13.x86_64.rpm ca5a5de88dbce63e4b68d0813dd0aa0b ImageMagick-c++-5.5.6-13.i386.rpm 70e707a934f7c674180d144dc54750c7 ImageMagick-c++-devel-5.5.6-13.x86_64.rpm 3a17b125eb8909661f2d0790c788cf4b ImageMagick-devel-5.5.6-13.x86_64.rpm 9581f193326fb69a826aba2db00c6d98 ImageMagick-perl-5.5.6-13.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package

Summary

References

https://www.cve.org/CVERecord?id=CVE-CAN-2005-0005 https://www.cve.org/CVERecord?id=CVE-CAN-2005-0397 https://www.cve.org/CVERecord?id=CVE-CAN-2005-0759 https://www.cve.org/CVERecord?id=CVE-CAN-2005-0760 https://www.cve.org/CVERecord?id=CVE-CAN-2005-0761 https://www.cve.org/CVERecord?id=CVE-CAN-2005-0762

Package List


Advisory ID: RHSA-2005:070-01
Issue date: 2005-03-23
Updated on: 2005-03-23
Product: Red Hat Enterprise Linux

Topic

Relevant Releases Architectures

Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64

Red Hat Linux Advanced Workstation 2.1 - ia64

Red Hat Enterprise Linux ES version 2.1 - i386

Red Hat Enterprise Linux WS version 2.1 - i386

Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64

Red Hat Desktop version 3 - i386, x86_64

Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64

Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64

Bugs Fixed

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here