Processing commands for [EMAIL PROTECTED]:
> retitle 345876 [CVE-2006-0082] imagemagick: New format string vulnerability
> in SetImageInfo().
Bug#345876: imagemagick: New format string vulnerability in SetImageInfo().
Changed Bug title.
> thanks
Stopping processing here.
Please cont
retitle 345876 [CVE-2006-0082] imagemagick: New format string vulnerability in
SetImageInfo().
thanks
On Wed, Jan 04, 2006 at 02:05:20AM +0100, Daniel Kobras wrote:
> As this is really is a new vulnerability, I assume CAN-2005-0397
> should not be reused. Security team, can you please confirm and
On Tue, Jan 10, 2006 at 05:03:55PM +0100, Daniel Kobras wrote:
> On Mon, Jan 09, 2006 at 10:18:13AM -0500, Matthias Clasen wrote:
> > Ah, got it now. Does this look more complete ?
>
> Yes, but there are still a few more places to fix. The attached patch
> for 6.2.4.5 should be fairly complete, ap
On Mon, Jan 09, 2006 at 10:18:13AM -0500, Matthias Clasen wrote:
> Ah, got it now. Does this look more complete ?
Yes, but there are still a few more places to fix. The attached patch
for 6.2.4.5 should be fairly complete, apart from a few odd places in
coders/, but those fall more into the scope
Package: imagemagick
Version: 6:6.2.3.0-1
Severity: grave
Tags: security patch
Justification: user security hole
Specially crafted file names cause programs using ImageMagick to crash
due to a format string vulnerability. It might be possible to execute
arbitrary code due to this bug.
I've discov
5 matches
Mail list logo
