Release date:
Updated on:
Affected Systems:
ImageMagick <6.8.8-5
Description:
--------------------------------------------------------------------------------
Bugtraq id: 65478
ImageMagick is an open-source image viewing and editing tool on Unix/Linux platforms.
In versions earlier than ImageMagick 6.8.8-5, a boundary error occurs in RLE Decoding of PSD images. This vulnerability can be exploited by remote attackers to cause buffer overflow and arbitrary code execution.
<* Source: Justin Grant
Link: http://secunia.com/advisories/56844/
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
ImageMagick
-----------
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://www.imagemagick.org/
Http://www.imagemagick.org/script/changelog.php
Http://freecode.com/projects/imagemagick/tags/bugfixes
For details about ImageMagick, click here
ImageMagick: click here
Use ImageMagick to draw a three-color schematic diagram
In Linux, PHP supports ImageMagick and MagicWandForPHP.
Image Magic with ImageMagick in Linux
Installation of ImageMagick and MagicWand For PHP in Linux
Install ImageMagick and JMagick in Linux