CVE-2007-1667

EPSS 2.1%

graphicsmagick - several

發布日:2007/3/24修改日:2026/4/28

描述

Multiple integer overflows in (1) the XGetPixel function in ImUtil.c in X.Org libx11 before 1.0.3, and (2) XInitImage function in xwd.c for ImageMagick, allow user-assisted remote attackers to cause a denial of service (crash) or obtain sensitive information via crafted images with large or negative values that trigger a buffer overflow.

受影響套件(5)

Debian/graphicsmagickfrom 0, < 1.1.7-14
Debian/graphicsmagickfrom 0, < 1.1.7-13+etch1
Debian/imagemagickfrom 0, < 7:6.2.4.5.dfsg1-1
Debian/imagemagickfrom 0, < 7:6.2.4.5.dfsg1-0.15+etch1
Debian/libx11from 0, < 2:1.0.3-7

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-1667