MDVSA-2012:160 -- Mandriva imagemagickID: oval:org.secpod.oval:def:302969 | Date: (C)2012-11-26 (M)2021-09-11 |
Class: PATCH | Family: unix |
A vulnerability has been found and corrected in imagemagick: The Magick_png_malloc function in coders/png.c in ImageMagick 6.7.8-6 does not use the proper variable type for the allocation size, which might allow remote attackers to cause a denial of service via a crafted PNG file that triggers incorrect memory allocation . The updated packages have been patched to correct this issue.
Platform: |
Mandriva Linux 2011.0 |