Learn about Centmin Mod LEMP Stack today
Become a Member

Security GraphicsMagick and ImageMagick popen() shell vulnerability via filename

Discussion in 'CentOS, Redhat & Oracle Linux News' started by Revenge, Jun 1, 2016.

  1. Revenge

    Revenge Active Member

    398
    84
    28
    Feb 21, 2016
    Portugal
    Ratings:
    +297
    Local Time:
    6:35 PM
    1.9.x
    10.1.x
    CVE Request: GraphicsMagick and ImageMagick popen() shell vulnerabilit
     
    • Informative Informative x 1
  2. eva2000

    eva2000 Administrator Staff Member

    34,577
    7,648
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +11,763
    Local Time:
    3:35 AM
    Nginx 1.15.x
    MariaDB 5.5/10.x
    remi repo already updated i think
    Code (Text):
    rpm -q ImageMagick-last
    ImageMagick-last-6.9.4.4-1.el6.remi.x86_64

    Code (Text):
    rpm -q --changelog ImageMagick-last | head -n6
    * Fri May 27 2016 Remi Collet <[email protected]> - 6.9.4.4-1
    - update to version 6.9.4 patchlevel 4
    
    * Thu May 19 2016 Remi Collet <[email protected]> - 6.9.4.3-1
    - update to version 6.9.4 patchlevel 3

    shame the changelog doesn't have any details

    doing check
    Code (Text):
    convert '|echo Hello > hello.txt;' null:
    convert: no decode delegate for this image format `TXT;' @ error/constitute.c/ReadImage/504.
    convert: no images defined `null:' @ error/convert.c/ConvertImageCommand/3257.
    ls hello.txt
    hello.txt
     
    • Informative Informative x 2
..