re-diffed multilib-fix.patch for new version
CVE-2007-1797 (High) :
Multiple integer overflows in ImageMagick before 6.3.3-5 allow remote attackers to execute
arbitrary code via (1) a crafted DCM image, which results in a heap-based overflow in the
ReadDCMImage function, or (2) the (a) colors or (b) comments field in a crafted XWD image,
which results in a heap-based overflow in the ReadXWDImage function, different issues than
CVE-2007-1667.
CVE-2007-4985 (Medium) :
ImageMagick before 6.3.5-9 allows context-dependent attackers to cause a denial of service via
a crafted image file that triggers (1) an infinite loop in the ReadDCMImage function, related to
ReadBlobByte function calls; or (2) an infinite loop in the ReadXCFImage function, related to
ReadBlobMSBLong function calls.
CVE-2007-4986 (High) :
Multiple integer overflows in ImageMagick before 6.3.5-9 allow context-dependent attackers to
execute arbitrary code via a crafted (1) .dcm, (2) .dib, (3) .xbm, (4) .xcf, or (5) .xwd image file,
which triggers a heap-based buffer overflow.
CVE-2007-4987 (High) :
Off-by-one error in the ReadBlobString function in blob.c in ImageMagick before 6.3.5-9 allows
context-dependent attackers to execute arbitrary code via a crafted image file, which triggers
the writing of a '\0' character to an out-of-bounds address.
CVE-2007-4988 (Medium) :
Sign extension error in the ReadDIBImage function in ImageMagick before 6.3.5-9 allows
context-dependent attackers to execute arbitrary code via a crafted width value in an image file,
which triggers an integer overflow and a heap-based buffer overflow.
Alejandro Mery
Aldas Nabazas
Minto van der Sluis
Christian Wiese