CVE-2007-4986

Description

Multiple integer overflows in ImageMagick before 6.3.5-9 allow context-dependent attackers to execute arbitrary code via a crafted (1) .dcm, (2) .dib, (3) .xbm, (4) .xcf, or (5) .xwd image file, which triggers a heap-based buffer overflow.

Affected packages (2)

• Debian/graphicsmagickfrom 0, < 1.1.11-1
• Debian/imagemagickfrom 0, < 7:6.2.4.5.dfsg1-2

References (1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-4986