CVE-2008-1097

Impact:
Moderate
Public Date:
2007-03-11
Bugzilla:
285861: CVE-2008-1097 Memory corruption in ImageMagick's PCX coder

The MITRE CVE dictionary describes this issue as:

Heap-based buffer overflow in the ReadPCXImage function in the PCX coder in coders/pcx.c in (1) ImageMagick 6.2.4-5 and 6.2.8-0 and (2) GraphicsMagick (aka gm) 1.1.7 allows user-assisted remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted .pcx file that triggers incorrect memory allocation for the scanline array, leading to memory corruption.

Find out more about CVE-2008-1097 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 4 (ImageMagick) RHSA-2008:0145 2008-04-17
Red Hat Enterprise Linux 3 (ImageMagick) RHSA-2008:0145 2008-04-17
Red Hat Enterprise Linux 2.1 (ImageMagick) RHSA-2008:0165 2008-04-17
Red Hat Enterprise Linux 5 (ImageMagick) RHSA-2008:0145 2008-04-17

Last Modified

CVE description copyright © 2017, The MITRE Corporation

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.