[Pkg-gmagick-im-team] Bug#530838: [SA35216] ImageMagick "XMakeImage()" Integer Overflow Vulnerability

Nelson A. de Oliveira naoliv at debian.org
Fri May 29 00:08:43 UTC 2009


tags 530838 + patch
thanks

Hi!

On Thu, May 28, 2009 at 4:12 AM, Giuseppe Iuculano <giuseppe at iuculano.it> wrote:
> The following SA (Secunia Advisory) id was published for imagemagick:
>
> SA35216[0]:

Thanks for the bug report.
Unfortunately I won't have time to update it until maybe one week from now.

A patch is available at
http://people.debian.org/~naoliv/misc/imagemagick/SA35216.diff
This is the fix applied upstream (and upstream confirmed that this is
all the necessary things that need to be patched to fix the issue).

I would be very grateful if somebody could do a NMU for this fix,
while I don't have time for it (CCed security team).

Thank you very much!

Best regards,
Nelson





More information about the Pkg-gmagick-im-team mailing list