CVE-2009-1882 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2009-1882 Interim 1 13 2023-07-08T01:57:51Z current 2021-05-30T12:47:21Z 2023-07-08T01:57:51Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2009-1882 Integer overflow in the XMakeImage function in magick/xwindow.c in ImageMagick 6.5.2-8, and GraphicsMagick, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted TIFF file, which triggers a buffer overflow. NOTE: some of these details are obtained from third party information. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html E-Mail link for SUSE-SR:2009:012 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server for SAP Applications 11 openSUSE Tumbleweed GraphicsMagick-1.3.25-1.1 GraphicsMagick-devel-1.3.25-1.1 libGraphicsMagick++-Q16-12-1.3.25-1.1 libGraphicsMagick++-devel-1.3.25-1.1 libGraphicsMagick-Q16-3-1.3.25-1.1 libGraphicsMagick3-config-1.3.25-1.1 libGraphicsMagickWand-Q16-2-1.3.25-1.1 libMagickCore1-32bit-6.4.3.6-7.19.1 libMagickCore1-6.4.3.6-7.19.1 perl-GraphicsMagick-1.3.25-1.1 libMagickCore1-6.4.3.6-7.19.1 as a component of SUSE Linux Enterprise Server 11 libMagickCore1-32bit-6.4.3.6-7.19.1 as a component of SUSE Linux Enterprise Server 11 libMagickCore1-6.4.3.6-7.19.1 as a component of SUSE Linux Enterprise Server for SAP Applications 11 libMagickCore1-32bit-6.4.3.6-7.19.1 as a component of SUSE Linux Enterprise Server for SAP Applications 11 GraphicsMagick-1.3.25-1.1 as a component of openSUSE Tumbleweed GraphicsMagick-devel-1.3.25-1.1 as a component of openSUSE Tumbleweed libGraphicsMagick++-Q16-12-1.3.25-1.1 as a component of openSUSE Tumbleweed libGraphicsMagick++-devel-1.3.25-1.1 as a component of openSUSE Tumbleweed libGraphicsMagick-Q16-3-1.3.25-1.1 as a component of openSUSE Tumbleweed libGraphicsMagick3-config-1.3.25-1.1 as a component of openSUSE Tumbleweed libGraphicsMagickWand-Q16-2-1.3.25-1.1 as a component of openSUSE Tumbleweed perl-GraphicsMagick-1.3.25-1.1 as a component of openSUSE Tumbleweed Integer overflow in the XMakeImage function in magick/xwindow.c in ImageMagick 6.5.2-8, and GraphicsMagick, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted TIFF file, which triggers a buffer overflow. NOTE: some of these details are obtained from third party information. CVE-2009-1882 SUSE Linux Enterprise Server 11:libMagickCore1-6.4.3.6-7.19.1 SUSE Linux Enterprise Server 11:libMagickCore1-32bit-6.4.3.6-7.19.1 SUSE Linux Enterprise Server for SAP Applications 11:libMagickCore1-6.4.3.6-7.19.1 SUSE Linux Enterprise Server for SAP Applications 11:libMagickCore1-32bit-6.4.3.6-7.19.1 openSUSE Tumbleweed:GraphicsMagick-1.3.25-1.1 openSUSE Tumbleweed:GraphicsMagick-devel-1.3.25-1.1 openSUSE Tumbleweed:libGraphicsMagick++-Q16-12-1.3.25-1.1 openSUSE Tumbleweed:libGraphicsMagick++-devel-1.3.25-1.1 openSUSE Tumbleweed:libGraphicsMagick-Q16-3-1.3.25-1.1 openSUSE Tumbleweed:libGraphicsMagick3-config-1.3.25-1.1 openSUSE Tumbleweed:libGraphicsMagickWand-Q16-2-1.3.25-1.1 openSUSE Tumbleweed:perl-GraphicsMagick-1.3.25-1.1 critical 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C