Hi On Wed, Mar 08, 2017 at 03:48:46PM +0000, Adam D. Barratt wrote: > Control: tags -1 + confirmed > > On 2017-03-03 8:14, Moritz Muehlenhoff wrote: > > imagemagick bug #844594 also affects jessie and it's a regression in > > jessie compared to wheezy. Since there's a steady stream of > > imagemagick vulnerabilities this would not result in a dedicated > > jessie update, but I'm rather asking for SRM approval to roll > > this into the next jessie update along with security fixes. > > > > This patch has been running on the jessie-based image scalers > > of Wikimedia Commons for a few months without further problems. > > That looks ok to me; thanks.
The patch has been included in the last DSA for imagemagick, versioned 8:6.8.9.9-5+deb8u8. Regards, Salvatore
