CVE-2012-3437

Related Files

Mandriva Linux Security Advisory 2013-092

Posted Apr 10, 2013

Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2013-092 - The Magick_png_malloc function in coders/png.c in ImageMagick 6.7.8-6 and earlier does not use the proper variable type for the allocation size, which might allow remote attackers to cause a denial of service via a crafted PNG file that triggers incorrect memory allocation.

tags | advisory, remote, denial of service

systems | linux, mandriva

advisories | CVE-2012-3437

SHA-256 | d7b8e31000d6f94514dd6bb1b2196951e4c3914af5eb3d0eba49fa8c550fc240

Download | Favorite | View

Mandriva Linux Security Advisory 2012-160

Posted Oct 6, 2012

Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2012-160 - The Magick_png_malloc function in coders/png.c in ImageMagick 6.7.8-6 does not use the proper variable type for the allocation size, which might allow remote attackers to cause a denial of service via a crafted PNG file that triggers incorrect memory allocation. The updated packages have been patched to correct this issue.

tags | advisory, remote, denial of service

systems | linux, mandriva

advisories | CVE-2012-3437

SHA-256 | c30e96034a9153e00d6e271ca2203c39d52f16954e85dba12fd8244f8b459b53

Download | Favorite | View

Ubuntu Security Notice USN-1544-1

Posted Aug 23, 2012

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1544-1 - Tom Lane discovered that ImageMagick would not always properly allocate memory. If a user or automated system using ImageMagick were tricked into opening a specially crafted PNG image, an attacker could exploit this to cause a denial of service or possibly execute code with the privileges of the user invoking the program.

tags | advisory, denial of service

systems | linux, ubuntu

advisories | CVE-2012-3437

SHA-256 | b37133d805b7960899db28d9eedaf2c123febd26d7a8b1e46218788828326038

Download | Favorite | View