Mandriva Linux Security Advisory : imagemagick (MDVSA-2012:160)
Medium Nessus Plugin ID 62446
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
DescriptionA vulnerability has been found and corrected in imagemagick :
The Magick_png_malloc function in coders/png.c in ImageMagick 6.7.8-6 does not use the proper variable type for the allocation size, which might allow remote attackers to cause a denial of service (crash) via a crafted PNG file that triggers incorrect memory allocation (CVE-2012-3437).
The updated packages have been patched to correct this issue.
SolutionUpdate the affected packages.