The imagemagick libmagick library 5.5 and earlier creates temporary files insecurely, which allows local users to create or overwrite arbitrary files.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Libmagick_library | Imagemagick | 5.5 (including) | 5.5 (including) |
| Red Hat Enterprise Linux AS (Advanced Server) version 2.1 | RedHat | * | |
| Red Hat Enterprise Linux ES version 2.1 | RedHat | * | |
| Red Hat Enterprise Linux WS version 2.1 | RedHat | * | |
| Red Hat Linux Advanced Workstation 2.1 | RedHat | * |
References
- http://marc.info/?l=bugtraq\u0026m=105786393628728\u0026w=2
- http://www.debian.org/security/2003/dsa-331
- http://www.redhat.com/support/errata/RHSA-2004-494.html
- http://marc.info/?l=bugtraq\u0026m=105786393628728\u0026w=2
- http://www.debian.org/security/2003/dsa-331
- http://www.redhat.com/support/errata/RHSA-2004-494.html