Want to subscribe to topics you're interested in?
Become a Member

Security GraphicsMagick and ImageMagick popen() shell vulnerability via filename

Discussion in 'CentOS, Redhat & Oracle Linux News' started by Revenge, Jun 1, 2016.

  1. Revenge

    Revenge Active Member

    288
    64
    28
    Feb 21, 2016
    Portugal
    Ratings:
    +227
    Local Time:
    5:44 PM
    1.9.x
    10.1.x
    CVE Request: GraphicsMagick and ImageMagick popen() shell vulnerabilit
     
    • Informative Informative x 1
  2. eva2000

    eva2000 Administrator Staff Member

    30,156
    6,785
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +10,136
    Local Time:
    2:44 AM
    Nginx 1.13.x
    MariaDB 5.5
    remi repo already updated i think
    Code (Text):
    rpm -q ImageMagick-last
    ImageMagick-last-6.9.4.4-1.el6.remi.x86_64

    Code (Text):
    rpm -q --changelog ImageMagick-last | head -n6
    * Fri May 27 2016 Remi Collet <remi@remirepo.net> - 6.9.4.4-1
    - update to version 6.9.4 patchlevel 4
    
    * Thu May 19 2016 Remi Collet <remi@remirepo.net> - 6.9.4.3-1
    - update to version 6.9.4 patchlevel 3

    shame the changelog doesn't have any details

    doing check
    Code (Text):
    convert '|echo Hello > hello.txt;' null:
    convert: no decode delegate for this image format `TXT;' @ error/constitute.c/ReadImage/504.
    convert: no images defined `null:' @ error/convert.c/ConvertImageCommand/3257.
    ls hello.txt
    hello.txt
     
    • Informative Informative x 2