Package: imagemagick Severity: grave Tags: security Hi, the following CVE (Common Vulnerabilities & Exposures) id was published for imagemagick.
CVE-2007-4985[0]: | ImageMagick before 6.3.5-9 allows context-dependent attackers to cause | a denial of service via a crafted image file that triggers (1) an | infinite loop in the ReadDCMImage function, related to ReadBlobByte | function calls; or (2) an infinite loop in the ReadXCFImage function, | related to ReadBlobMSBLong function calls. If you fix this vulnerability please also include the CVE id in your changelog entry. Since this could happen in for example an automatic image upload web service I set the severity to grave. For further information: [0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4985 Kind regards Nico -- Nico Golde - http://ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF For security reasons, all text in this mail is double-rot13 encrypted.
pgpUc2QwNzyMU.pgp
Description: PGP signature
