From: Daniel Kobras <[EMAIL PROTECTED]> Subject: Bug#291033: Multiple Vendor ImageMagick .psd Image File Decode Heap Overflow Vulnerability Date: Tue, 18 Jan 2005 11:46:12 +0100 Message-ID: <[EMAIL PROTECTED]>
> tag 291033 + woody security > severity 291033 grave > thanks > > On Tue, Jan 18, 2005 at 11:09:08AM +0100, Ruben Puettmann wrote: > > Remote exploitation of a buffer overflow vulnerability in The > > ImageMagick's Project's ImageMagick PSD image-decoding module could > > allow an attacker to execute arbitrary code. > > An updated package for unstable is already sitting in incoming and > should soon become available in testing as well. However, I've just > verified that the vulnerability is present in the woody version as well, > so this bug still needs to be acted upon. Ryuichi, do you want to > prepare updated woody packages yourself? Otherwise, I'd offer to do so. Please do it. Now, I'm busy. And I don't have woody system. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
