The fix is in the GraphicsMagick Mercurial repository as changeset
d6e469d02cd2:
http://graphicsmagick.hg.sourceforge.net/hgweb/graphicsmagick/graphicsmagick/rev/d6e469d02cd2
Bob
On Mon, 30 Jul 2012, Moritz Muehlenhoff wrote:
Package: graphicsmagick
Severity: grave
Tags: security
Please see https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-3438 for
details.
Please fix this for Wheezy with an isolated fix instead of updating to a new
upstream release (since the freeze is in effect)
This doesn't warrant a DSA, but can be fixed through a stable point update for
Squeeze (adding Jonathan to CC, who's managing this)
Cheers,
Moritz
--
Bob Friesenhahn
bfrie...@simple.dallas.tx.us, http://www.simplesystems.org/users/bfriesen/
GraphicsMagick Maintainer, http://www.GraphicsMagick.org/
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
