Mandriva Update For Imagemagick MDVSA-2012:078 (imagemagick) Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

Multiple vulnerabilities has been found and corrected in imagemagick: A flaw was found in the way ImageMagick processed images with malformed Exchangeable image file format (Exif) metadata. An attacker could create a specially-crafted image file that, when opened by a victim, would cause ImageMagick to crash or, potentially, execute arbitrary code (CVE-2012-0247). The updated packages have been patched to correct these issues. Description truncated, for more information please check the Reference URL

Affected

imagemagick on Mandriva Linux 2011.0

Severity

Classification

CVE CVE-2012-0247, CVE-2012-0248, CVE-2012-0259, CVE-2012-0260, CVE-2012-1185, CVE-2012-1798

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Mandrake Security Advisory MDVSA-2009:009 (kvm)
Mandrake Security Advisory MDVSA-2009:118 (kernel)
Mandrake Security Advisory MDVSA-2009:097 (clamav)
Mandrake Security Advisory MDVSA-2009:013 (mplayer)
Mandrake Security Advisory MDVSA-2009:012 (mozilla-thunderbird)

Mandriva Update for imagemagick MDVSA-2012:078 (imagemagick)

Take action and discover your vulnerabilities