Skip site navigation (1)Skip section navigation (2) 
Date:      Wed, 24 May 2017 08:12:50 +0000
From:      bugzilla-noreply@freebsd.org
To:        freebsd-ports-bugs@FreeBSD.org
Subject:   [Bug 219497] graphics/ImageMagick: Upgrade to recent version (v6.9.8-6) - current(v6.9.6-4) is vulnerable
Message-ID:  <bug-219497-13@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help 
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D219497

            Bug ID: 219497
           Summary: graphics/ImageMagick: Upgrade to recent version
                    (v6.9.8-6) - current(v6.9.6-4) is vulnerable
           Product: Ports & Packages
           Version: Latest
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Many People
          Priority: ---
         Component: Individual Port(s)
          Assignee: kwm@FreeBSD.org
          Reporter: i.dani@outlook.com
          Assignee: kwm@FreeBSD.org
             Flags: maintainer-feedback?(kwm@FreeBSD.org)

The current version 6(legacy version -
https://legacy.imagemagick.org/script/index.php), avilable for FreeBSD, has
multiple vulnerabilities.

See here:
https://www.cvedetails.com/vulnerability-list/vendor_id-1749/Imagemagick.ht=
ml

Please also see: http://thehackernews.com/2017/05/yahoo-imagemagick-hack.ht=
ml

Which has been fixed in the current version(v6.9.8-6):
http://git.imagemagick.org/repos/ImageMagick/commit/1c358ffe0049f768dd49a8a=
889c1cbf99ac9849b

Available versions upstream: http://git.imagemagick.org/repos/ImageMagick/t=
ags

--=20
You are receiving this mail because:
You are the assignee for the bug.=

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-219497-13>