USN-7164-1: ImageMagick vulnerability
17 December 2024
ImageMagick could be made to crash if it received specially crafted input.
Releases
Packages
- imagemagick - Image manipulation programs and library
Details
It was discovered that ImageMagick incorrectly handled certain malformed
files. If a user or automated system were tricked into opening a specially
crafted file, an attacker could possibly exploit this to cause a denial of
service.
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 14.04
-
imagemagick
-
8:6.7.7.10-6ubuntu3.13+esm12
-
imagemagick-common
-
8:6.7.7.10-6ubuntu3.13+esm12
-
libmagick++-dev
-
8:6.7.7.10-6ubuntu3.13+esm12
-
libmagick++5
-
8:6.7.7.10-6ubuntu3.13+esm12
-
libmagickcore-dev
-
8:6.7.7.10-6ubuntu3.13+esm12
-
libmagickcore5
-
8:6.7.7.10-6ubuntu3.13+esm12
-
libmagickcore5-extra
-
8:6.7.7.10-6ubuntu3.13+esm12
-
libmagickwand-dev
-
8:6.7.7.10-6ubuntu3.13+esm12
-
libmagickwand5
-
8:6.7.7.10-6ubuntu3.13+esm12
-
perlmagick
-
8:6.7.7.10-6ubuntu3.13+esm12
In general, a standard system update will make all the necessary changes.