SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Generic)  >   ImageMagick Vendors:   ImageMagick.org
(Oracle Issues Fix for Oracle Linux) ImageMagick File Processing Input Validation Flaw Lets Remote Users Read/Move/Delete Arbitrary Files and Execute Arbitrary Commands
SecurityTracker Alert ID:  1036119
SecurityTracker URL:  http://securitytracker.com/id/1036119
CVE Reference:   CVE-2016-3714, CVE-2016-3715, CVE-2016-3716, CVE-2016-3717   (Links to External Site)
Date:  Jun 17 2016
Impact:   Disclosure of system information, Execution of arbitrary code via network, Host/resource access via network, Modification of system information, User access via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): prior to versions 6.9.3-10, 7.0.1-1
Description:   Several vulnerabilities were reported in ImageMagick. A remote user can cause arbitrary commands to be executed on the target user's system. A remote user can read, move, and delete arbitrary files on the target system.

The software does not properly filter parameters processed by the delegate command. A remote user can create a specially crafted image file that, when processed by the target application using ImageMagick, will trigger an input validation flaw and execute arbitrary shell commands on the target system [CVE-2016-3714]. The code will run with the privileges of the target application.

The MVG, HTTPS, EPHEMERAL, and MSL coders are affected.

Nikolay Ermishkin (Mail.Ru Security Team) and stewie reported this vulnerability.

A remote user can create a specially crafted image file that, when processed by the target application using ImageMagick, will delete arbitrary files on the target system [CVE-2016-3715]. The EPHEMERAL coder is affected.

A remote user can create a specially crafted image file that, when processed by the target application using ImageMagick, will move arbitrary files on the target system [CVE-2016-3716]. The MSL coder is affected.

A remote user can create a specially crafted image file that, when processed by the target application using ImageMagick, will read arbitrary files on the target system [CVE-2016-3717]. The LABEL code is affected.

A remote user can create a specially crafted image file that, when processed by the target application using ImageMagick, will conduct server-side request forgery attacks [CVE-2016-3718]. The HTTP and FTP coders are affected.

Impact:   A remote user can create content that, when processed by the target application, will read, move, or delete arbitrary files or execute arbitrary code on the target user's system.

A remote user can create content that, when processed by the target application, will conduct server-side forgery attacks.

Solution:   Oracle has issued a fix for CVE-2016-3714, CVE-2016-3715, CVE-2016-3716, and CVE-2016-3717.

The Oracle Linux advisory is available at:

http://linux.oracle.com/errata/ELSA-2016-1237.html

Vendor URL:  linux.oracle.com/errata/ELSA-2016-1237.html (Links to External Site)
Cause:   Input validation error
Underlying OS:  Linux (Oracle)
Underlying OS Comments:  6, 7

Message History:   This archive entry is a follow-up to the message listed below.
May 4 2016 ImageMagick File Processing Input Validation Flaw Lets Remote Users Read/Move/Delete Arbitrary Files and Execute Arbitrary Commands



 Source Message Contents

Subject:  [El-errata] ELSA-2016-1237 Important: Oracle Linux 7 ImageMagick security update

Oracle Linux Security Advisory ELSA-2016-1237

http://linux.oracle.com/errata/ELSA-2016-1237.html

The following updated rpms for Oracle Linux 7 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
ImageMagick-6.7.8.9-15.el7_2.i686.rpm
ImageMagick-6.7.8.9-15.el7_2.x86_64.rpm
ImageMagick-c++-6.7.8.9-15.el7_2.i686.rpm
ImageMagick-c++-6.7.8.9-15.el7_2.x86_64.rpm
ImageMagick-c++-devel-6.7.8.9-15.el7_2.i686.rpm
ImageMagick-c++-devel-6.7.8.9-15.el7_2.x86_64.rpm
ImageMagick-devel-6.7.8.9-15.el7_2.i686.rpm
ImageMagick-devel-6.7.8.9-15.el7_2.x86_64.rpm
ImageMagick-doc-6.7.8.9-15.el7_2.x86_64.rpm
ImageMagick-perl-6.7.8.9-15.el7_2.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/ImageMagick-6.7.8.9-15.el7_2.src.rpm



Description of changes:

[6.7.8.9-15]
- Added fix for CVE-2016-5118, CVE-2016-5240, rhbz#1269562,
   rhbz#1326834, rhbz#1334188, rhbz#1269553


_______________________________________________
El-errata mailing list
El-errata@oss.oracle.com
https://oss.oracle.com/mailman/listinfo/el-errata
 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC