Mandrake Linux Security Advisory : ImageMagick (MDKSA-2005:065)

high Nessus Plugin ID 17677
New! Plugin Severity Now Using CVSS v3

The calculated severity for Plugins has been updated to use CVSS v3 by default. Plugins that do not have a CVSS v3 score will fall back to CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Synopsis

The remote Mandrake Linux host is missing one or more security updates.

Description

A format string vulnerability was discovered in ImageMagick, in the way it handles filenames. An attacker could execute arbitrary code on a victim's machine provided they could trick them into opening a file with a special name (CVE-2005-0397).

As well, Andrei Nigmatulin discovered a heap-based buffer overflow in ImageMagick's image handler. An attacker could create a special PhotoShop Document (PSD) image file in such a way that it would cause ImageMagick to execute arbitrary code when processing the image (CVE-2005-0005).

Other vulnerabilities were discovered in ImageMagick versions prior to 6.0 :

A bug in the way that ImageMagick handles TIFF tags was discovered. It was possible that a TIFF image with an invalid tag could cause ImageMagick to crash (CVE-2005-0759).

A bug in ImageMagick's TIFF decoder was discovered where a specially- crafted TIFF image could cause ImageMagick to crash (CVE-2005-0760).

A bug in ImageMagick's PSD parsing was discovered where a specially- crafted PSD file could cause ImageMagick to crash (CVE-2005-0761).

Finally, a heap overflow bug was discovered in ImageMagick's SGI parser. If an attacker could trick a user into opening a specially- crafted SGI image file, ImageMagick would execute arbitrary code (CVE-2005-0762).

The updated packages have been patched to correct these issues.

Solution

Update the affected packages.

Plugin Details

Severity: High

ID: 17677

File Name: mandrake_MDKSA-2005-065.nasl

Version: 1.21

Type: local

Published: 4/2/2005

Updated: 1/6/2021

Dependencies: ssh_get_info.nasl

Risk Information

VPR

Risk Factor: Medium

Score: 5.5

CVSS v2

Risk Factor: High

Base Score: 7.5

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

CPE: p-cpe:/a:mandriva:linux:ImageMagick, p-cpe:/a:mandriva:linux:ImageMagick-doc, p-cpe:/a:mandriva:linux:lib64Magick5.5.7, p-cpe:/a:mandriva:linux:lib64Magick5.5.7-devel, p-cpe:/a:mandriva:linux:lib64Magick6.4.0, p-cpe:/a:mandriva:linux:lib64Magick6.4.0-devel, p-cpe:/a:mandriva:linux:libMagick5.5.7, p-cpe:/a:mandriva:linux:libMagick5.5.7-devel, p-cpe:/a:mandriva:linux:libMagick6.4.0, p-cpe:/a:mandriva:linux:libMagick6.4.0-devel, p-cpe:/a:mandriva:linux:perl-Magick, cpe:/o:mandrakesoft:mandrake_linux:10.0, cpe:/o:mandrakesoft:mandrake_linux:10.1

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/Mandrake/release, Host/Mandrake/rpm-list

Patch Publication Date: 4/1/2005

Reference Information

CVE: CVE-2005-0005, CVE-2005-0397, CVE-2005-0759, CVE-2005-0760, CVE-2005-0761, CVE-2005-0762

MDKSA: 2005:065