GLSA-201606-14 : ImageMagick: Multiple vulnerabilities

This script is Copyright (C) 2016 Tenable Network Security, Inc.


Synopsis :

The remote Gentoo host is missing one or more security-related
patches.

Description :

The remote host is affected by the vulnerability described in GLSA-201606-14
(ImageMagick: Multiple vulnerabilities)

Multiple vulnerabilities have been discovered in ImageMagick including,
but not limited to, various overflows and potential Denials of Service.
Please visit the references and related bug reports for additional
information.

Impact :

Remote attackers could potentially perform buffer overflows or conduct
Denials of Service.

Workaround :

There is no known workaround at this time.

See also :

https://bugs.launchpad.net/ubuntu/+source/imagemagick/+bug/1448803
https://bugs.launchpad.net/ubuntu/+source/imagemagick/+bug/1490362
http://www.openwall.com/lists/oss-security/2014/12/24/1
https://bugs.launchpad.net/ubuntu/+source/imagemagick/+bug/1459747
https://security.gentoo.org/glsa/201606-14

Solution :

All ImageMagick users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose '>=media-gfx/imagemagick-6.9.0.3'

Risk factor :

Medium

Family: Gentoo Local Security Checks

Nessus Plugin ID: 91845 ()

Bugtraq ID:

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now