List Info

Thread: Critical security problem in ImageMagick < 6.3.3-5 - where was this announced?
Critical security problem in ImageMagick < 6.3.3-5 - where was this announced?
user name
 2007-05-18 08:31:30 
A critical security bug was recently found in versions of
ImageMagick 
before 6.3.3-5.  NIST assigned the bug its highest security
rating, and 
claims the flaw "Provides administrator access, Allows
complete 
confidentiality, integrity, and availability
violation":

   htt
p://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-1797

I subscribe to both the 'magick-announce' and
'magick-developers' 
mailing list, and have not seen any announcements informing
people that 
they need to upgrade or risk having their servers
compromised.  Is there 
an official ImageMagick channel for making these types of
security 
announcements that I am not aware of?

   craig

_______________________________________________
Magick-developers mailing list
Magick-developersimagemagick.org
http://studio.imagemagick.org/mailman/listinfo/m
agick-developers
[1]

about | contact  Other archives ( Real Estate discussion Medical topics )