Re: [opensuse-factory] Imagemagick and CVE-2017-11532

On 2018-10-08 19:00, Dominique Leuenberger wrote:

==== ImageMagick ==== Subpackages: ImageMagick-extra libMagick++-7_Q16HDRI4 libMagickCore-7_Q16HDRI6 libMagickWand-7_Q16HDRI6 perl-PerlMagick

- allow writing PS, PS2, PS3, XPS, EPS and PDF, disable reading only by default security policy [bsc#1105592c#32] - also disable EPS coder in default policy.xml [bsc#1105592] [bsc#1109976#c7]

It seems to me that this has been fixed since 24 Jul 2017. Is it still needed to have reading disabled in policy.xml? https://github.com/ImageMagick/ImageMagick/issues/563#issuecomment-317288181 -- /bengan -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org