Your submission was sent successfully! Close

CVE-2007-4986

Published: 24 September 2007

Multiple integer overflows in ImageMagick before 6.3.5-9 allow context-dependent attackers to execute arbitrary code via a crafted (1) .dcm, (2) .dib, (3) .xbm, (4) .xcf, or (5) .xwd image file, which triggers a heap-based buffer overflow.

Priority

Medium

Status

Package Release Status
graphicsmagick
Launchpad, Ubuntu, Debian
Upstream
Released (1.1.11)
imagemagick
Launchpad, Ubuntu, Debian
Upstream
Released (6.3.5-9)