imagemagick security update(DSA-3652-1) imagemagick_6.8.9.9-5+deb8u4_amd64.deb
Risk Information
Base Score
9.8
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
No records foundCVE Information
Source CVE
CVE-2016-4564
Associated CVE
CVE-2016-4564
CVE-2016-5687
CVE-2016-4562
CVE-2016-4563
CVE-2016-5010
CVE-2016-4564
Associated CVE
CVE-2016-4564
CVE-2016-5687
CVE-2016-4562
CVE-2016-4563
CVE-2016-5010
Patch Details
No records found
References
http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html
http://git.imagemagick.org/repos/ImageMagick/commit/c20de102cc57f3739a8870f79e728e3b0bea18c0
http://www.imagemagick.org/script/changelog.php
http://www.openwall.com/lists/oss-security/2016/06/14/5
http://www.openwall.com/lists/oss-security/2016/06/17/3
http://www.securityfocus.com/bid/91283
https://blog.fuzzing-project.org/46-Various-invalid-memory-reads-in-ImageMagick-WPG,-DDS,-DCM.html
https://bugzilla.redhat.com/show_bug.cgi?id=1354500
https://github.com/ImageMagick/ImageMagick/commit/726812fa2fa7ce16bcf58f6e115f65427a1c0950
https://security.gentoo.org/glsa/201611-21