Mailinglist Archive: opensuse-factory (331 mails)

< Previous Next >
Re: [opensuse-factory] Imagemagick and CVE-2017-11532
On 2018-10-08 19:00, Dominique Leuenberger wrote:
==== ImageMagick ====
Subpackages: ImageMagick-extra libMagick++-7_Q16HDRI4 libMagickCore-7_Q16HDRI6
libMagickWand-7_Q16HDRI6 perl-PerlMagick

- allow writing PS, PS2, PS3, XPS, EPS and PDF, disable reading
only by default security policy [bsc#1105592c#32]
- also disable EPS coder in default policy.xml [bsc#1105592]
[bsc#1109976#c7]

It seems to me that this has been fixed since 24 Jul 2017. Is it still needed to have reading disabled in policy.xml?

https://github.com/ImageMagick/ImageMagick/issues/563#issuecomment-317288181



--
/bengan
--
To unsubscribe, e-mail: opensuse-factory+unsubscribe@xxxxxxxxxxxx
To contact the owner, e-mail: opensuse-factory+owner@xxxxxxxxxxxx

< Previous Next >
Follow Ups