CVE-2007-1797

Publication date 2 April 2007

Last updated 24 July 2024

Ubuntu priority

Unknown

Why this priority?

Multiple integer overflows in ImageMagick before 6.3.3-5 allow remote attackers to execute arbitrary code via (1) a crafted DCM image, which results in a heap-based overflow in the ReadDCMImage function, or (2) the (a) colors or (b) comments field in a crafted XWD image, which results in a heap-based overflow in the ReadXWDImage function, different issues than CVE-2007-1667.

Status

Package Ubuntu Release Status
graphicsmagick 8.04 LTS hardy
Fixed 1.1.8-1
7.10 gutsy
Fixed 1.1.8-1
7.04 feisty Ignored end of life, was needed
6.10 edgy Ignored end of life, was needed
6.06 LTS dapper Not in release
imagemagick 8.04 LTS hardy
Fixed 6.2.4.5.dfsg1-1ubuntu1
7.10 gutsy
Fixed 6.2.4.5.dfsg1-1ubuntu1
7.04 feisty
Fixed 6.2.4.5.dfsg1-0.14ubuntu0.1
6.10 edgy
Fixed 6.2.4.5.dfsg1-0.10ubuntu0.3
6.06 LTS dapper
Fixed 6.2.4.5-0.6ubuntu0.6

References

Related Ubuntu Security Notices (USN)

    • USN-481-1
    • ImageMagick vulnerabilities
    • 10 July 2007

Other references