← Back to team overview

oem-qa team mailing list archive

  1. oem-qa team
  2. Mailing list archive
  3. Message #00318

[Bug 385324] [NEW] Update imagemagick to fix security vulnerability

  Thread PreviousDate PreviousThread Next 
*** This bug is a security vulnerability ***

Public security bug reported:

Imagemagick is currently in version 7:6.3.7.9.dfsg1-2ubuntu1 in Ubuntu
for dell-mini and it is affected by vulnerability, fixed in generic
hardy (see below).


imagemagick (7:6.3.7.9.dfsg1-2ubuntu1.1) hardy-security; urgency=low

  * SECURITY UPDATE: integer overflow via crafted TIFF image
    - debian/patches/CVE-2009-1882.patch: adjust xwindow.c, display.c and
      animate.c to verify width and length
    - CVE-2009-1882

 -- Jamie Strandboge <jamie@xxxxxxxxxx>  Thu, 04 Jun 2009 12:54:55 -0500

** Affects: dell-mini
     Importance: Undecided
         Status: New

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2009-1882

** This bug has been flagged as a security vulnerability

-- 
Update imagemagick to fix security vulnerability
https://bugs.launchpad.net/bugs/385324
You received this bug notification because you are a member of OEM
Services QA, which is subscribed to The Dell Mini Project.

Status in Dell Inspiron Mini with Custom Dell UI: New

Bug description:
Imagemagick is currently in version 7:6.3.7.9.dfsg1-2ubuntu1 in Ubuntu for dell-mini and it is affected by vulnerability, fixed in generic hardy (see below).


imagemagick (7:6.3.7.9.dfsg1-2ubuntu1.1) hardy-security; urgency=low

  * SECURITY UPDATE: integer overflow via crafted TIFF image
    - debian/patches/CVE-2009-1882.patch: adjust xwindow.c, display.c and
      animate.c to verify width and length
    - CVE-2009-1882

 -- Jamie Strandboge <jamie@xxxxxxxxxx>  Thu, 04 Jun 2009 12:54:55 -0500

Follow ups

References

  Thread PreviousDate PreviousThread Next