Join the community today
Become a Member

Security GraphicsMagick and ImageMagick popen() shell vulnerability via filename

Discussion in 'CentOS, Redhat & Oracle Linux News' started by Revenge, Jun 1, 2016.

  1. Revenge

    Revenge Active Member

    454
    93
    28
    Feb 21, 2016
    Portugal
    Ratings:
    +343
    Local Time:
    1:20 PM
    1.9.x
    10.1.x
    CVE Request: GraphicsMagick and ImageMagick popen() shell vulnerabilit
     
  2. eva2000

    eva2000 Administrator Staff Member

    44,718
    10,193
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +15,797
    Local Time:
    10:20 PM
    Nginx 1.17.x
    MariaDB 5.5/10.x
    remi repo already updated i think
    Code (Text):
    rpm -q ImageMagick-last
    ImageMagick-last-6.9.4.4-1.el6.remi.x86_64

    Code (Text):
    rpm -q --changelog ImageMagick-last | head -n6
    * Fri May 27 2016 Remi Collet <remi@remirepo.net> - 6.9.4.4-1
    - update to version 6.9.4 patchlevel 4
    
    * Thu May 19 2016 Remi Collet <remi@remirepo.net> - 6.9.4.3-1
    - update to version 6.9.4 patchlevel 3

    shame the changelog doesn't have any details

    doing check
    Code (Text):
    convert '|echo Hello > hello.txt;' null:
    convert: no decode delegate for this image format `TXT;' @ error/constitute.c/ReadImage/504.
    convert: no images defined `null:' @ error/convert.c/ConvertImageCommand/3257.
    ls hello.txt
    hello.txt