CVE 2007-4988
Sign extension error in the ReadDIBImage function in ImageMagick before 6.3.5-9 allows context-dependent attackers to execute arbitrary code via a crafted width value in an image file, which triggers an integer overflow and a heap-based buffer overflow.
Related bugs and status
CVE-2007-4988 (Candidate) is related to these bugs:
Bug #144425: [ImageMagick] security issues with releases prior to 6.3.5-9
Bug #204349: [FFe] Please sync graphicsmagick 1.1.11-1 from Debian(Unstable)
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
204349 | [FFe] Please sync graphicsmagick 1.1.11-1 from Debian(Unstable) | graphicsmagick (Ubuntu) | Medium | Fix Released |
See the
CVE page on Mitre.org
for more details.