On Mon, 5 Dec 2016, Salvatore Bonaccorso wrote:
Hi Chris, hi Bob,
On Mon, Dec 05, 2016 at 05:26:23PM +0100, Chris Lamb wrote:
[Please retain 847...@bugs.debian.org in CC]
Bob Friesenhahn wrote:
Is this CVE fixed upstream? I am not aware of this number.
I do not know, sorry.
The CVE was assigned in the thread
https://marc.info/?l=oss-security&m=148090788501782&w=2 .
Thanks. I noticed the posting while catching up with my email.
This morning I updated the GraphicsMagick ChangeLog file to make note
of the CVE against the fix which was already made in Mercurial.
I have heard that ImageMagick suffers from the same problem.
Bob
--
Bob Friesenhahn
bfrie...@simple.dallas.tx.us, http://www.simplesystems.org/users/bfriesen/
GraphicsMagick Maintainer, http://www.GraphicsMagick.org/
