SCIENTIFIC-LINUX-USERS Archives

March 2012

SCIENTIFIC-LINUX-USERS@LISTSERV.FNAL.GOV
Options: Use Monospaced Font
Show Text Part by Default
Show All Mail Headers

Message: [<< First] [< Prev] [Next >] [Last >>]
Topic: [<< First] [< Prev] [Next >] [Last >>]
Author: [<< First] [< Prev] [Next >] [Last >>]

Print Reply
Subject:
Re: Security ERRATA Low: ImageMagick on SL5.x i386/x86_64
From:
Pat Riehecky <[log in to unmask]>
Reply To:
Pat Riehecky <[log in to unmask]>
Date:
Fri, 23 Mar 2012 08:26:01 -0500
Content-Type:
text/plain
Parts/Attachments:
text/plain (22 lines) 
On 03/23/2012 08:12 AM, Stephan Wiesand wrote:
> On Mar 21, 2012, at 22:24 , [log in to unmask] wrote:
>
>> Synopsis:    Low: ImageMagick security and bug fix update
>> Issue Date:  2012-02-21
>> CVE Numbers: CVE-2010-4167
> heads up: the issue described in https://www.centos.org/modules/newbb/viewtopic.php?topic_id=36328 caused us some trouble.
>
> If you have the suspicion that you users rely on convert for converting postscript to image formats (it seems quite common), you may want to hold this one or roll back.
>
> Regards,
> 	Stephan
>

There does not seem to be an associated upstream bug, at least in my 
searching.  Can someone confirm I didn't overlook it (and possibly get a 
bug opened upstream to notify them of the issue)?

-- 
Pat Riehecky
Scientific Linux Developer

ATOM RSS1 RSS2