Vulnerability Description
Multiple unspecified vulnerabilities in GraphicsMagick before 1.1.14, and 1.2.x before 1.2.3, allow remote attackers to cause a denial of service (crash) via unspecified vectors in (1) XCF and (2) CINEON images.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Graphicsmagick | Graphicsmagick | <= 1.1.13 |
References
- http://cvs.graphicsmagick.org/cgi-bin/cvsweb.cgi/GraphicsMagick/coders/cineon.c
- http://cvs.graphicsmagick.org/cgi-bin/cvsweb.cgi/GraphicsMagick/coders/xcf.c
- http://secunia.com/advisories/30549Vendor Advisory
- http://sourceforge.net/project/shownotes.php?release_id=604785Patch
- http://sourceforge.net/project/shownotes.php?release_id=604837Patch
- http://sourceforge.net/project/shownotes.php?release_id=604837&group_id=73485
- http://www.securityfocus.com/bid/29583
- http://cvs.graphicsmagick.org/cgi-bin/cvsweb.cgi/GraphicsMagick/coders/cineon.c
- http://cvs.graphicsmagick.org/cgi-bin/cvsweb.cgi/GraphicsMagick/coders/xcf.c
- http://secunia.com/advisories/30549Vendor Advisory
- http://sourceforge.net/project/shownotes.php?release_id=604785Patch
- http://sourceforge.net/project/shownotes.php?release_id=604837Patch
- http://sourceforge.net/project/shownotes.php?release_id=604837&group_id=73485
- http://www.securityfocus.com/bid/29583
FAQ
What is CVE-2008-6072?
CVE-2008-6072 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Multiple unspecified vulnerabilities in GraphicsMagick before 1.1.14, and 1.2.x before 1.2.3, allow remote attackers to cause a denial of service (crash) via unspecified vectors in (1) XCF and (2) CIN...
How severe is CVE-2008-6072?
CVE-2008-6072 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-6072?
Check the references section above for vendor advisories and patch information. Affected products include: Graphicsmagick Graphicsmagick.