ImageMagick PNM Image Decoding Remote Buffer Overflow Vulnerability

Bugtraq ID:	13351
Class:	Boundary Condition Error
CVE:	CVE-2005-1275
Remote:	Yes
Local:	No
Published:	Apr 25 2005 12:00AM
Updated:	Mar 08 2007 03:15AM
Credit:	Damian Put <[email protected]> is credited with the discovery of this issue.
Vulnerable:	Turbolinux Turbolinux Workstation 8.0 Turbolinux Turbolinux Workstation 7.0 Turbolinux Turbolinux Server 8.0 Turbolinux Turbolinux Server 7.0 Turbolinux Turbolinux Desktop 10.0 Turbolinux Turbolinux 10 F... Turbolinux Home Trustix Secure Linux 2.2 Trustix Secure Linux 2.1 Trustix Secure Enterprise Linux 2.0 SGI ProPack 3.0 SGI Advanced Linux Environment 3.0 Redhat Linux 9.0 i386 Redhat Linux 7.3 i686 Redhat Linux 7.3 i386 Redhat Linux 7.3 Redhat Fedora Core3 Redhat Fedora Core2 Redhat Fedora Core1 Redhat Enterprise Linux WS 3 Redhat Enterprise Linux ES 3 Redhat Enterprise Linux AS 3 Redhat Desktop 3.0 Mandriva Linux Mandrake 10.2 x86_64 Mandriva Linux Mandrake 10.2 MandrakeSoft Corporate Server 3.0 x86_64 MandrakeSoft Corporate Server 3.0 MandrakeSoft Corporate Server 2.1 x86_64 MandrakeSoft Corporate Server 2.1 ImageMagick ImageMagick 6.2.1 ImageMagick ImageMagick 6.2 .0.7 + Redhat Fedora Core3 + Redhat Fedora Core2 ImageMagick ImageMagick 6.2 .0.4 + Gentoo Linux ImageMagick ImageMagick 6.2 ImageMagick ImageMagick 6.1.8 + Gentoo Linux ImageMagick ImageMagick 6.1.7 ImageMagick ImageMagick 6.1.6 ImageMagick ImageMagick 6.1.5 ImageMagick ImageMagick 6.1.4 ImageMagick ImageMagick 6.1.3 ImageMagick ImageMagick 6.1.2 ImageMagick ImageMagick 6.1.1 ImageMagick ImageMagick 6.1 ImageMagick ImageMagick 6.0.8 ImageMagick ImageMagick 6.0.7 + Redhat Desktop 4.0 + Redhat Enterprise Linux Desktop version 4 + Redhat Enterprise Linux AS 4 + Redhat Enterprise Linux ES 4 + Redhat Enterprise Linux WS 4 + S.u.S.E. Linux Personal 9.2 x86_64 + S.u.S.E. Linux Personal 9.2 ImageMagick ImageMagick 6.0.6 + Ubuntu Ubuntu Linux 5.0 4 powerpc + Ubuntu Ubuntu Linux 5.0 4 i386 + Ubuntu Ubuntu Linux 5.0 4 amd64 ImageMagick ImageMagick 6.0.5 + Turbolinux Home + Turbolinux Turbolinux Desktop 10.0 + Turbolinux Turbolinux Server 10.0 ImageMagick ImageMagick 6.0.4 + Mandriva Linux Mandrake 10.1 x86_64 + Mandriva Linux Mandrake 10.1 ImageMagick ImageMagick 6.0.3 ImageMagick ImageMagick 6.0.2 .5 + Ubuntu Ubuntu Linux 4.1 ppc + Ubuntu Ubuntu Linux 4.1 ia64 + Ubuntu Ubuntu Linux 4.1 ia32 ImageMagick ImageMagick 6.0.2 + Ubuntu Ubuntu Linux 4.1 ppc + Ubuntu Ubuntu Linux 4.1 ia64 + Ubuntu Ubuntu Linux 4.1 ia32 ImageMagick ImageMagick 6.0.1 ImageMagick ImageMagick 6.0 ImageMagick ImageMagick 6.2.9.2 ImageMagick ImageMagick 6.2.0.3 ImageMagick ImageMagick 6.0.4.4 + Mandriva Linux Mandrake 10.1 x86_64 + Mandriva Linux Mandrake 10.1 ImageMagick ImageMagick 5.5.7.15 + Mandriva Linux Mandrake 10.0 AMD64 + Mandriva Linux Mandrake 10.0 + Mandriva Linux Mandrake 9.2 amd64 + Mandriva Linux Mandrake 9.2 + S.u.S.E. Linux Personal 9.1 x86_64 + S.u.S.E. Linux Personal 9.1 + S.u.S.E. Linux Personal 9.0 x86_64 + S.u.S.E. Linux Personal 9.0 ImageMagick ImageMagick 5.4.2.3 + Turbolinux Turbolinux Workstation 8.0 GraphicsMagick GraphicsMagick 1.1.5 GraphicsMagick GraphicsMagick 1.1.5 + Gentoo Linux GraphicsMagick GraphicsMagick 1.1.4 GraphicsMagick GraphicsMagick 1.1.3 GraphicsMagick GraphicsMagick 1.1 GraphicsMagick GraphicsMagick 1.0.6 GraphicsMagick GraphicsMagick 1.0
Not Vulnerable:	ImageMagick ImageMagick 6.2.2 + Gentoo Linux GraphicsMagick GraphicsMagick 1.1.6 + Gentoo Linux

ImageMagick PNM Image Decoding Remote Buffer Overflow Vulnerability

A remotely exploitable client-side buffer-overflow vulnerability affects ImageMagick. This issue occurs because the application fails to properly validate the length of user-supplied strings before copying them into static process buffers.

An attacker may exploit this issue to cause the affected application to crash, potentially destroying unsaved data, ultimately denying service to legitimate users.

ImageMagick PNM Image Decoding Remote Buffer Overflow Vulnerability

The following command will craft a malicious file designed to leverage this issue:

perl -e 'print "P7\n1\n1 1\n1"' > vuln.pnm

ImageMagick PNM Image Decoding Remote Buffer Overflow Vulnerability

Solution:
The vendor has released an upgrade dealing with this issue. Please see the referenced advisories for more information.


ImageMagick ImageMagick 5.5.7.15

• Mandriva ImageMagick-5.5.7.15-6.4.C30mdk.i586.rpm
  Corporate 3.0:
  http://www.mandriva.com/en/download


• Mandriva ImageMagick-5.5.7.15-6.4.C30mdk.src.rpm
  Corporate 3.0/X86_64:
  http://www.mandriva.com/en/download


• Mandriva ImageMagick-5.5.7.15-6.4.C30mdk.src.rpm
  Corporate 3.0:
  http://www.mandriva.com/en/download


• Mandriva ImageMagick-5.5.7.15-6.4.C30mdk.x86_64.rpm
  Corporate 3.0/X86_64:
  http://www.mandriva.com/en/download


• Mandriva ImageMagick-doc-5.5.7.15-6.4.C30mdk.i586.rpm
  Corporate 3.0:
  http://www.mandriva.com/en/download


• Mandriva ImageMagick-doc-5.5.7.15-6.4.C30mdk.x86_64.rpm
  Corporate 3.0/X86_64:
  http://www.mandriva.com/en/download


• Mandriva lib64Magick5.5.7-5.5.7.15-6.4.C30mdk.x86_64.rpm
  Corporate 3.0/X86_64:
  http://www.mandriva.com/en/download


• Mandriva lib64Magick5.5.7-devel-5.5.7.15-6.4.C30mdk.x86_64.rpm
  Corporate 3.0/X86_64:
  http://www.mandriva.com/en/download


• Mandriva libMagick5.5.7-5.5.7.15-6.4.C30mdk.i586.rpm
  Corporate 3.0:
  http://www.mandriva.com/en/download


• Mandriva libMagick5.5.7-devel-5.5.7.15-6.4.C30mdk.i586.rpm
  Corporate 3.0:
  http://www.mandriva.com/en/download


• Mandriva perl-Magick-5.5.7.15-6.4.C30mdk.i586.rpm
  Corporate 3.0:
  http://www.mandriva.com/en/download


• Mandriva perl-Magick-5.5.7.15-6.4.C30mdk.x86_64.rpm
  Corporate 3.0/X86_64:
  http://www.mandriva.com/en/download

Redhat Fedora Core2

• Fedora ImageMagick-6.2.0.7-2.fc2.4.legacy.i386.rpm
  RedHat Fedora Core 2
  http://download.fedoralegacy.org/fedora/2/updates/i386/ImageMagick-6.2 .0.7-2.fc2.4.legacy.i386.rpm


• Fedora ImageMagick-c++-6.2.0.7-2.fc2.4.legacy.i386.rpm
  RedHat Fedora Core 2
  http://download.fedoralegacy.org/fedora/2/updates/i386/ImageMagick-c++ -6.2.0.7-2.fc2.4.legacy.i386.rpm


• Fedora ImageMagick-c++-devel-6.2.0.7-2.fc2.4.legacy.i386.rpm
  RedHat Fedora Core 2
  http://download.fedoralegacy.org/fedora/2/updates/i386/ImageMagick-c++ -devel-6.2.0.7-2.fc2.4.legacy.i386.rpm


• Fedora ImageMagick-devel-6.2.0.7-2.fc2.4.legacy.i386.rpm
  RedHat Fedora Core 2
  http://download.fedoralegacy.org/fedora/2/updates/i386/ImageMagick-dev el-6.2.0.7-2.fc2.4.legacy.i386.rpm


• Fedora ImageMagick-perl-6.2.0.7-2.fc2.4.legacy.i386.rpm
  RedHat Fedora Core 2
  http://download.fedoralegacy.org/fedora/2/updates/i386/ImageMagick-per l-6.2.0.7-2.fc2.4.legacy.i386.rpm

Redhat Fedora Core1

• Fedora ImageMagick-5.5.6-13.legacy.i386.rpm
  RedHat Fedora Core 1
  http://download.fedoralegacy.org/fedora/1/updates/i386/ImageMagick-5.5 .6-13.legacy.i386.rpm


• Fedora ImageMagick-c++-5.5.6-13.legacy.i386.rpm
  RedHat Fedora Core 1
  http://download.fedoralegacy.org/fedora/1/updates/i386/ImageMagick-c++ -5.5.6-13.legacy.i386.rpm


• Fedora ImageMagick-c++-devel-5.5.6-13.legacy.i386.rpm
  RedHat Fedora Core 1
  http://download.fedoralegacy.org/fedora/1/updates/i386/ImageMagick-c++ -devel-5.5.6-13.legacy.i386.rpm


• Fedora ImageMagick-devel-5.5.6-13.legacy.i386.rpm
  RedHat Fedora Core 1
  http://download.fedoralegacy.org/fedora/1/updates/i386/ImageMagick-dev el-5.5.6-13.legacy.i386.rpm


• Fedora ImageMagick-perl-5.5.6-13.legacy.i386.rpm
  RedHat Fedora Core 1
  http://download.fedoralegacy.org/fedora/1/updates/i386/ImageMagick-per l-5.5.6-13.legacy.i386.rpm

ImageMagick ImageMagick 6.2.0.3

• Mandriva ImageMagick-6.2.0.3-8.1.102mdk.i586.rpm
  Mandrakelinux 10.2:
  http://www.mandriva.com/en/download


• Mandriva ImageMagick-6.2.0.3-8.1.102mdk.src.rpm
  Mandrakelinux 10.2/X86_64:
  http://www.mandriva.com/en/download


• Mandriva ImageMagick-6.2.0.3-8.1.102mdk.src.rpm
  Mandrakelinux 10.2:
  http://www.mandriva.com/en/download


• Mandriva ImageMagick-6.2.0.3-8.1.102mdk.x86_64.rpm
  Mandrakelinux 10.2/X86_64:
  http://www.mandriva.com/en/download


• Mandriva ImageMagick-doc-6.2.0.3-8.1.102mdk.i586.rpm
  Mandrakelinux 10.2:
  http://www.mandriva.com/en/download


• Mandriva ImageMagick-doc-6.2.0.3-8.1.102mdk.x86_64.rpm
  Mandrakelinux 10.2/X86_64:
  http://www.mandriva.com/en/download


• Mandriva lib64Magick8.0.2-6.2.0.3-8.1.102mdk.x86_64.rpm
  Mandrakelinux 10.2/X86_64:
  http://www.mandriva.com/en/download


• Mandriva lib64Magick8.0.2-devel-6.2.0.3-8.1.102mdk.x86_64.rpm
  Mandrakelinux 10.2/X86_64:
  http://www.mandriva.com/en/download


• Mandriva libMagick8.0.2-6.2.0.3-8.1.102mdk.i586.rpm
  Mandrakelinux 10.2:
  http://www.mandriva.com/en/download


• Mandriva libMagick8.0.2-devel-6.2.0.3-8.1.102mdk.i586.rpm
  Mandrakelinux 10.2:
  http://www.mandriva.com/en/download


• Mandriva perl-Image-Magick-6.2.0.3-8.1.102mdk.i586.rpm
  Mandrakelinux 10.2:
  http://www.mandriva.com/en/download


• Mandriva perl-Image-Magick-6.2.0.3-8.1.102mdk.x86_64.rpm
  Mandrakelinux 10.2/X86_64:
  http://www.mandriva.com/en/download

ImageMagick ImageMagick 6.0.4.4

• Mandriva ImageMagick-6.0.4.4-5.3.101mdk.i586.rpm
  Mandrakelinux 10.1:
  http://www.mandriva.com/en/download


• Mandriva ImageMagick-6.0.4.4-5.3.101mdk.src.rpm
  Mandrakelinux 10.1/X86_64:
  http://www.mandriva.com/en/download


• Mandriva ImageMagick-6.0.4.4-5.3.101mdk.src.rpm
  Mandrakelinux 10.1:
  http://www.mandriva.com/en/download


• Mandriva ImageMagick-6.0.4.4-5.3.101mdk.x86_64.rpm
  Mandrakelinux 10.1/X86_64:
  http://www.mandriva.com/en/download


• Mandriva ImageMagick-doc-6.0.4.4-5.3.101mdk.i586.rpm
  Mandrakelinux 10.1:
  http://www.mandriva.com/en/download


• Mandriva ImageMagick-doc-6.0.4.4-5.3.101mdk.x86_64.rpm
  Mandrakelinux 10.1/X86_64:
  http://www.mandriva.com/en/download


• Mandriva lib64Magick6.4.0-6.0.4.4-5.3.101mdk.x86_64.rpm
  Mandrakelinux 10.1/X86_64:
  http://www.mandriva.com/en/download


• Mandriva lib64Magick6.4.0-devel-6.0.4.4-5.3.101mdk.x86_64.rpm
  Mandrakelinux 10.1/X86_64:
  http://www.mandriva.com/en/download


• Mandriva libMagick6.4.0-6.0.4.4-5.3.101mdk.i586.rpm
  Mandrakelinux 10.1:
  http://www.mandriva.com/en/download


• Mandriva libMagick6.4.0-devel-6.0.4.4-5.3.101mdk.i586.rpm
  Mandrakelinux 10.1:
  http://www.mandriva.com/en/download


• Mandriva perl-Magick-6.0.4.4-5.3.101mdk.i586.rpm
  Mandrakelinux 10.1:
  http://www.mandriva.com/en/download


• Mandriva perl-Magick-6.0.4.4-5.3.101mdk.x86_64.rpm
  Mandrakelinux 10.1/X86_64:
  http://www.mandriva.com/en/download

GraphicsMagick GraphicsMagick 1.0

• GraphicsMagick GraphicsMagick-1.1.6.tar.gz
  http://prdownloads.sourceforge.net/graphicsmagick/GraphicsMagick-1.1.6 .tar.gz?download

GraphicsMagick GraphicsMagick 1.0.6

• GraphicsMagick GraphicsMagick-1.1.6.tar.gz
  http://prdownloads.sourceforge.net/graphicsmagick/GraphicsMagick-1.1.6 .tar.gz?download

GraphicsMagick GraphicsMagick 1.1

• GraphicsMagick GraphicsMagick-1.1.6.tar.gz
  http://prdownloads.sourceforge.net/graphicsmagick/GraphicsMagick-1.1.6 .tar.gz?download

GraphicsMagick GraphicsMagick 1.1.3

• GraphicsMagick GraphicsMagick-1.1.6.tar.gz
  http://prdownloads.sourceforge.net/graphicsmagick/GraphicsMagick-1.1.6 .tar.gz?download

GraphicsMagick GraphicsMagick 1.1.4

• GraphicsMagick GraphicsMagick-1.1.6.tar.gz
  http://prdownloads.sourceforge.net/graphicsmagick/GraphicsMagick-1.1.6 .tar.gz?download

GraphicsMagick GraphicsMagick 1.1.5

• GraphicsMagick GraphicsMagick-1.1.6.tar.gz
  http://prdownloads.sourceforge.net/graphicsmagick/GraphicsMagick-1.1.6 .tar.gz?download

GraphicsMagick GraphicsMagick 1.1.5

• GraphicsMagick GraphicsMagick-1.1.6.tar.gz
  http://prdownloads.sourceforge.net/graphicsmagick/GraphicsMagick-1.1.6 .tar.gz?download

ImageMagick ImageMagick 6.0

• ImageMagick ImageMagick 6.2.2
  http://www.imagemagick.org/script/binary-releases.php

ImageMagick ImageMagick 6.0.1

• ImageMagick ImageMagick 6.2.2
  http://www.imagemagick.org/script/binary-releases.php

ImageMagick ImageMagick 6.0.2

• ImageMagick ImageMagick 6.2.2
  http://www.imagemagick.org/script/binary-releases.php

ImageMagick ImageMagick 6.0.2 .5

• ImageMagick ImageMagick 6.2.2
  http://www.imagemagick.org/script/binary-releases.php


• Ubuntu imagemagick_6.0.2.5-1ubuntu1.5_amd64.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/i/imagemagick/imagemagick_ 6.0.2.5-1ubuntu1.5_amd64.deb


• Ubuntu imagemagick_6.0.2.5-1ubuntu1.5_i386.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/i/imagemagick/imagemagick_ 6.0.2.5-1ubuntu1.5_i386.deb


• Ubuntu imagemagick_6.0.2.5-1ubuntu1.5_powerpc.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/i/imagemagick/imagemagick_ 6.0.2.5-1ubuntu1.5_powerpc.deb


• Ubuntu libmagick++6-dev_6.0.2.5-1ubuntu1.5_amd64.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/i/imagemagick/libmagick++6 -dev_6.0.2.5-1ubuntu1.5_amd64.deb


• Ubuntu libmagick++6-dev_6.0.2.5-1ubuntu1.5_i386.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/i/imagemagick/libmagick++6 -dev_6.0.2.5-1ubuntu1.5_i386.deb


• Ubuntu libmagick++6-dev_6.0.2.5-1ubuntu1.5_powerpc.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/i/imagemagick/libmagick++6 -dev_6.0.2.5-1ubuntu1.5_powerpc.deb


• Ubuntu libmagick++6_6.0.2.5-1ubuntu1.5_amd64.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/i/imagemagick/libmagick++6 _6.0.2.5-1ubuntu1.5_amd64.deb


• Ubuntu libmagick++6_6.0.2.5-1ubuntu1.5_i386.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/i/imagemagick/libmagick++6 _6.0.2.5-1ubuntu1.5_i386.deb


• Ubuntu libmagick++6_6.0.2.5-1ubuntu1.5_powerpc.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/i/imagemagick/libmagick++6 _6.0.2.5-1ubuntu1.5_powerpc.deb


• Ubuntu libmagick6-dev_6.0.2.5-1ubuntu1.5_amd64.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/i/imagemagick/libmagick6-d ev_6.0.2.5-1ubuntu1.5_amd64.deb


• Ubuntu libmagick6-dev_6.0.2.5-1ubuntu1.5_i386.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/i/imagemagick/libmagick6-d ev_6.0.2.5-1ubuntu1.5_i386.deb


• Ubuntu libmagick6-dev_6.0.2.5-1ubuntu1.5_powerpc.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/i/imagemagick/libmagick6-d ev_6.0.2.5-1ubuntu1.5_powerpc.deb


• Ubuntu libmagick6_6.0.2.5-1ubuntu1.5_amd64.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/i/imagemagick/libmagick6_6 .0.2.5-1ubuntu1.5_amd64.deb


• Ubuntu libmagick6_6.0.2.5-1ubuntu1.5_i386.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/i/imagemagick/libmagick6_6 .0.2.5-1ubuntu1.5_i386.deb


• Ubuntu libmagick6_6.0.2.5-1ubuntu1.5_powerpc.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/i/imagemagick/libmagick6_6 .0.2.5-1ubuntu1.5_powerpc.deb


• Ubuntu perlmagick_6.0.2.5-1ubuntu1.5_amd64.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/universe/i/imagemagick/perlmagi ck_6.0.2.5-1ubuntu1.5_amd64.deb


• Ubuntu perlmagick_6.0.2.5-1ubuntu1.5_i386.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/universe/i/imagemagick/perlmagi ck_6.0.2.5-1ubuntu1.5_i386.deb


• Ubuntu perlmagick_6.0.2.5-1ubuntu1.5_powerpc.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/universe/i/imagemagick/perlmagi ck_6.0.2.5-1ubuntu1.5_powerpc.deb

ImageMagick ImageMagick 6.0.3

• ImageMagick ImageMagick 6.2.2
  http://www.imagemagick.org/script/binary-releases.php

ImageMagick ImageMagick 6.0.4

• ImageMagick ImageMagick 6.2.2
  http://www.imagemagick.org/script/binary-releases.php

ImageMagick ImageMagick 6.0.5

• ImageMagick ImageMagick 6.2.2
  http://www.imagemagick.org/script/binary-releases.php

ImageMagick ImageMagick 6.0.6

• ImageMagick ImageMagick 6.2.2
  http://www.imagemagick.org/script/binary-releases.php


• Ubuntu imagemagick_6.0.6.2-2.1ubuntu1.1_amd64.deb
  Ubuntu 5.04 (Hoary Hedgehog)
  http://security.ubuntu.com/ubuntu/pool/main/i/imagemagick/imagemagick_ 6.0.6.2-2.1ubuntu1.1_amd64.deb


• Ubuntu imagemagick_6.0.6.2-2.1ubuntu1.1_i386.deb
  Ubuntu 5.04 (Hoary Hedgehog)
  http://security.ubuntu.com/ubuntu/pool/main/i/imagemagick/imagemagick_ 6.0.6.2-2.1ubuntu1.1_i386.deb


• Ubuntu imagemagick_6.0.6.2-2.1ubuntu1.1_powerpc.deb
  Ubuntu 5.04 (Hoary Hedgehog)
  http://security.ubuntu.com/ubuntu/pool/main/i/imagemagick/imagemagick_ 6.0.6.2-2.1ubuntu1.1_powerpc.deb


• Ubuntu libmagick++6-dev_6.0.6.2-2.1ubuntu1.1_amd64.deb
  Ubuntu 5.04 (Hoary Hedgehog)
  http://security.ubuntu.com/ubuntu/pool/main/i/imagemagick/libmagick6-d ev_6.0.6.2-2.1ubuntu1.1_amd64.deb


• Ubuntu libmagick++6-dev_6.0.6.2-2.1ubuntu1.1_i386.deb
  Ubuntu 5.04 (Hoary Hedgehog)
  http://security.ubuntu.com/ubuntu/pool/main/i/imagemagick/libmagick++6 -dev_6.0.6.2-2.1ubuntu1.1_i386.deb


• Ubuntu libmagick++6-dev_6.0.6.2-2.1ubuntu1.1_powerpc.deb
  Ubuntu 5.04 (Hoary Hedgehog)
  http://security.ubuntu.com/ubuntu/pool/main/i/imagemagick/libmagick++6 -dev_6.0.6.2-2.1ubuntu1.1_powerpc.deb


• Ubuntu libmagick++6_6.0.6.2-2.1ubuntu1.1_amd64.deb
  Ubuntu 5.04 (Hoary Hedgehog)
  http://security.ubuntu.com/ubuntu/pool/main/i/imagemagick/libmagick++6 _6.0.6.2-2.1ubuntu1.1_amd64.deb


• Ubuntu libmagick++6_6.0.6.2-2.1ubuntu1.1_i386.deb
  Ubuntu 5.04 (Hoary Hedgehog)
  http://security.ubuntu.com/ubuntu/pool/main/i/imagemagick/libmagick++6 _6.0.6.2-2.1ubuntu1.1_i386.deb


• Ubuntu libmagick++6_6.0.6.2-2.1ubuntu1.1_powerpc.deb
  Ubuntu 5.04 (Hoary Hedgehog)
  http://security.ubuntu.com/ubuntu/pool/main/i/imagemagick/libmagick++6 _6.0.6.2-2.1ubuntu1.1_powerpc.deb


• Ubuntu libmagick6-dev_6.0.6.2-2.1ubuntu1.1_amd64.deb
  Ubuntu 5.04 (Hoary Hedgehog)
  http://security.ubuntu.com/ubuntu/pool/main/i/imagemagick/libmagick6-d ev_6.0.6.2-2.1ubuntu1.1_amd64.deb


• Ubuntu libmagick6-dev_6.0.6.2-2.1ubuntu1.1_i386.deb
  Ubuntu 5.04 (Hoary Hedgehog)
  http://security.ubuntu.com/ubuntu/pool/main/i/imagemagick/libmagick6-d ev_6.0.6.2-2.1ubuntu1.1_i386.deb


• Ubuntu libmagick6-dev_6.0.6.2-2.1ubuntu1.1_powerpc.deb
  Ubuntu 5.04 (Hoary Hedgehog)
  http://security.ubuntu.com/ubuntu/pool/main/i/imagemagick/libmagick6-d ev_6.0.6.2-2.1ubuntu1.1_powerpc.deb


• Ubuntu libmagick6_6.0.6.2-2.1ubuntu1.1_amd64.deb
  Ubuntu 5.04 (Hoary Hedgehog)
  http://security.ubuntu.com/ubuntu/pool/main/i/imagemagick/libmagick6_6 .0.6.2-2.1ubuntu1.1_amd64.deb


• Ubuntu libmagick6_6.0.6.2-2.1ubuntu1.1_i386.deb
  Ubuntu 5.04 (Hoary Hedgehog)
  http://security.ubuntu.com/ubuntu/pool/main/i/imagemagick/libmagick6_6 .0.6.2-2.1ubuntu1.1_i386.deb


• Ubuntu libmagick6_6.0.6.2-2.1ubuntu1.1_powerpc.deb
  Ubuntu 5.04 (Hoary Hedgehog)
  http://security.ubuntu.com/ubuntu/pool/main/i/imagemagick/libmagick6_6 .0.6.2-2.1ubuntu1.1_powerpc.deb


• Ubuntu perlmagick_6.0.6.2-2.1ubuntu1.1_amd64.deb
  Ubuntu 5.04 (Hoary Hedgehog)
  http://security.ubuntu.com/ubuntu/pool/universe/i/imagemagick/perlmagi ck_6.0.6.2-2.1ubuntu1.1_amd64.deb


• Ubuntu perlmagick_6.0.6.2-2.1ubuntu1.1_i386.deb
  Ubuntu 5.04 (Hoary Hedgehog)
  http://security.ubuntu.com/ubuntu/pool/universe/i/imagemagick/perlmagi ck_6.0.6.2-2.1ubuntu1.1_i386.deb


• Ubuntu perlmagick_6.0.6.2-2.1ubuntu1.1_powerpc.deb
  Ubuntu 5.04 (Hoary Hedgehog)
  http://security.ubuntu.com/ubuntu/pool/universe/i/imagemagick/perlmagi ck_6.0.6.2-2.1ubuntu1.1_powerpc.deb

ImageMagick ImageMagick 6.0.7

• Fedora ImageMagick-6.2.2.0-1.fc3.i386.rpm
  RedHat Fedora Core 3
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/


• Fedora ImageMagick-6.2.2.0-1.fc3.x86_64.rpm
  RedHat Fedora Core 3
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/


• Fedora ImageMagick-c++-6.2.2.0-1.fc3.i386.rpm
  RedHat Fedora Core 3
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/


• Fedora ImageMagick-c++-6.2.2.0-1.fc3.x86_64.rpm
  RedHat Fedora Core 3
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/


• Fedora ImageMagick-c++-devel-6.2.2.0-1.fc3.i386.rpm
  RedHat Fedora Core 3
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/


• Fedora ImageMagick-c++-devel-6.2.2.0-1.fc3.x86_64.rpm
  RedHat Fedora Core 3
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/


• Fedora ImageMagick-debuginfo-6.2.2.0-1.fc3.i386.rpm
  RedHat Fedora Core 3
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/


• Fedora ImageMagick-debuginfo-6.2.2.0-1.fc3.x86_64.rpm
  RedHat Fedora Core 3
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/


• Fedora ImageMagick-devel-6.2.2.0-1.fc3.i386.rpm
  RedHat Fedora Core 3
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/


• Fedora ImageMagick-devel-6.2.2.0-1.fc3.x86_64.rpm
  RedHat Fedora Core 3
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/


• Fedora ImageMagick-perl-6.2.2.0-1.fc3.i386.rpm
  RedHat Fedora Core 3
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/


• Fedora ImageMagick-perl-6.2.2.0-1.fc3.x86_64.rpm
  RedHat Fedora Core 3
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/


• ImageMagick ImageMagick 6.2.2
  http://www.imagemagick.org/script/binary-releases.php

ImageMagick ImageMagick 6.0.8

• ImageMagick ImageMagick 6.2.2
  http://www.imagemagick.org/script/binary-releases.php

ImageMagick ImageMagick 6.1

• ImageMagick ImageMagick 6.2.2
  http://www.imagemagick.org/script/binary-releases.php

ImageMagick ImageMagick 6.1.1

• ImageMagick ImageMagick 6.2.2
  http://www.imagemagick.org/script/binary-releases.php

ImageMagick ImageMagick 6.1.2

• ImageMagick ImageMagick 6.2.2
  http://www.imagemagick.org/script/binary-releases.php

ImageMagick ImageMagick 6.1.3

• ImageMagick ImageMagick 6.2.2
  http://www.imagemagick.org/script/binary-releases.php

ImageMagick ImageMagick 6.1.4

• ImageMagick ImageMagick 6.2.2
  http://www.imagemagick.org/script/binary-releases.php

ImageMagick ImageMagick 6.1.5

• ImageMagick ImageMagick 6.2.2
  http://www.imagemagick.org/script/binary-releases.php

ImageMagick ImageMagick 6.1.6

• ImageMagick ImageMagick 6.2.2
  http://www.imagemagick.org/script/binary-releases.php

ImageMagick ImageMagick 6.1.7

• ImageMagick ImageMagick 6.2.2
  http://www.imagemagick.org/script/binary-releases.php

ImageMagick ImageMagick 6.1.8

• ImageMagick ImageMagick 6.2.2
  http://www.imagemagick.org/script/binary-releases.php

ImageMagick ImageMagick 6.2 .0.4

• ImageMagick ImageMagick 6.2.2
  http://www.imagemagick.org/script/binary-releases.php

ImageMagick ImageMagick 6.2 .0.7

• ImageMagick ImageMagick 6.2.2
  http://www.imagemagick.org/script/binary-releases.php

ImageMagick ImageMagick 6.2

• ImageMagick ImageMagick 6.2.2
  http://www.imagemagick.org/script/binary-releases.php

ImageMagick ImageMagick 6.2.1

• ImageMagick ImageMagick 6.2.2
  http://www.imagemagick.org/script/binary-releases.php

Redhat Linux 7.3 i386

• Fedora ImageMagick-5.4.3.11-12.7.x.legacy.i386.rpm
  RedHat Linux 7.3
  http://download.fedoralegacy.org/redhat/7.3/updates/i386/ImageMagick-5 .4.3.11-12.7.x.legacy.i386.rpm


• Fedora ImageMagick-c++-5.4.3.11-12.7.x.legacy.i386.rpm
  RedHat Linux 7.3
  http://download.fedoralegacy.org/redhat/7.3/updates/i386/ImageMagick-c ++-5.4.3.11-12.7.x.legacy.i386.rpm


• Fedora ImageMagick-c++-devel-5.4.3.11-12.7.x.legacy.i386.rpm
  RedHat Linux 7.3
  http://download.fedoralegacy.org/redhat/7.3/updates/i386/ImageMagick-c ++-devel-5.4.3.11-12.7.x.legacy.i386.rpm


• Fedora ImageMagick-devel-5.4.3.11-12.7.x.legacy.i386.rpm
  RedHat Linux 7.3
  http://download.fedoralegacy.org/redhat/7.3/updates/i386/ImageMagick-d evel-5.4.3.11-12.7.x.legacy.i386.rpm


• Fedora ImageMagick-perl-5.4.3.11-12.7.x.legacy.i386.rpm
  RedHat Linux 7.3
  http://download.fedoralegacy.org/redhat/7.3/updates/i386/ImageMagick-p erl-5.4.3.11-12.7.x.legacy.i386.rpm

Redhat Linux 7.3 i686

• Fedora ImageMagick-5.4.3.11-12.7.x.legacy.i386.rpm
  RedHat Linux 7.3
  http://download.fedoralegacy.org/redhat/7.3/updates/i386/ImageMagick-5 .4.3.11-12.7.x.legacy.i386.rpm


• Fedora ImageMagick-c++-5.4.3.11-12.7.x.legacy.i386.rpm
  RedHat Linux 7.3
  http://download.fedoralegacy.org/redhat/7.3/updates/i386/ImageMagick-c ++-5.4.3.11-12.7.x.legacy.i386.rpm


• Fedora ImageMagick-c++-devel-5.4.3.11-12.7.x.legacy.i386.rpm
  RedHat Linux 7.3
  http://download.fedoralegacy.org/redhat/7.3/updates/i386/ImageMagick-c ++-devel-5.4.3.11-12.7.x.legacy.i386.rpm


• Fedora ImageMagick-devel-5.4.3.11-12.7.x.legacy.i386.rpm
  RedHat Linux 7.3
  http://download.fedoralegacy.org/redhat/7.3/updates/i386/ImageMagick-d evel-5.4.3.11-12.7.x.legacy.i386.rpm


• Fedora ImageMagick-perl-5.4.3.11-12.7.x.legacy.i386.rpm
  RedHat Linux 7.3
  http://download.fedoralegacy.org/redhat/7.3/updates/i386/ImageMagick-p erl-5.4.3.11-12.7.x.legacy.i386.rpm

Redhat Linux 7.3

• Fedora ImageMagick-5.4.3.11-12.7.x.legacy.i386.rpm
  RedHat Linux 7.3
  http://download.fedoralegacy.org/redhat/7.3/updates/i386/ImageMagick-5 .4.3.11-12.7.x.legacy.i386.rpm


• Fedora ImageMagick-c++-5.4.3.11-12.7.x.legacy.i386.rpm
  RedHat Linux 7.3
  http://download.fedoralegacy.org/redhat/7.3/updates/i386/ImageMagick-c ++-5.4.3.11-12.7.x.legacy.i386.rpm


• Fedora ImageMagick-c++-devel-5.4.3.11-12.7.x.legacy.i386.rpm
  RedHat Linux 7.3
  http://download.fedoralegacy.org/redhat/7.3/updates/i386/ImageMagick-c ++-devel-5.4.3.11-12.7.x.legacy.i386.rpm


• Fedora ImageMagick-devel-5.4.3.11-12.7.x.legacy.i386.rpm
  RedHat Linux 7.3
  http://download.fedoralegacy.org/redhat/7.3/updates/i386/ImageMagick-d evel-5.4.3.11-12.7.x.legacy.i386.rpm


• Fedora ImageMagick-perl-5.4.3.11-12.7.x.legacy.i386.rpm
  RedHat Linux 7.3
  http://download.fedoralegacy.org/redhat/7.3/updates/i386/ImageMagick-p erl-5.4.3.11-12.7.x.legacy.i386.rpm

Redhat Linux 9.0 i386

• Fedora ImageMagick-5.4.7-18.legacy.i386.rpm
  RedHat Linux 9.0
  http://download.fedoralegacy.org/redhat/9/updates/i386/ImageMagick-5.4 .7-18.legacy.i386.rpm


• Fedora ImageMagick-c++-5.4.7-18.legacy.i386.rpm
  RedHat Linux 9.0
  http://download.fedoralegacy.org/redhat/9/updates/i386/ImageMagick-c++ -5.4.7-18.legacy.i386.rpm


• Fedora ImageMagick-c++-devel-5.4.7-18.legacy.i386.rpm
  RedHat Linux 9.0
  http://download.fedoralegacy.org/redhat/9/updates/i386/ImageMagick-c++ -devel-5.4.7-18.legacy.i386.rpm


• Fedora ImageMagick-devel-5.4.7-18.legacy.i386.rpm
  RedHat Linux 9.0
  http://download.fedoralegacy.org/redhat/9/updates/i386/ImageMagick-dev el-5.4.7-18.legacy.i386.rpm


• Fedora ImageMagick-perl-5.4.7-18.legacy.i386.rpm
  RedHat Linux 9.0
  http://download.fedoralegacy.org/redhat/9/updates/i386/ImageMagick-per l-5.4.7-18.legacy.i386.rpm

ImageMagick PNM Image Decoding Remote Buffer Overflow Vulnerability

References:

• GraphicsMagick Homepage (GraphicsMagick)
  
• ImageMagick ChangeLog (ImageMagick)
  
• ImageMagick Homepage (ImageMagick)
  
• Release Name: 1.1.6 (GraphicsMagick)
  
• RHSA-2005:413-04 - ImageMagick security update (RedHat)
  
• [Overflow.pl] ImageMagick ReadPNMImage() Heap Overflow (Damian Put )