oem-qa team mailing list archive

Thread
Date

[Bug 385324] Re: Update imagemagick to fix security vulnerability

To: oem-qa@xxxxxxxxxxxxxxxxxxx
From: Chris Wayne <chris.wayne@xxxxxxxxxxxxx>
Date: Tue, 16 Jun 2009 18:18:11 -0000
Reply-to: Bug 385324 <385324@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

** Changed in: dell-mini
       Status: New => Confirmed

-- 
Update imagemagick to fix security vulnerability
https://bugs.launchpad.net/bugs/385324
You received this bug notification because you are a member of OEM
Services QA, which is subscribed to The Dell Mini Project.

Status in Dell Inspiron Mini with Custom Dell UI: Confirmed

Bug description:
Imagemagick is currently in version 7:6.3.7.9.dfsg1-2ubuntu1 in Ubuntu for dell-mini and it is affected by vulnerability, fixed in generic hardy (see below).


imagemagick (7:6.3.7.9.dfsg1-2ubuntu1.1) hardy-security; urgency=low

  * SECURITY UPDATE: integer overflow via crafted TIFF image
    - debian/patches/CVE-2009-1882.patch: adjust xwindow.c, display.c and
      animate.c to verify width and length
    - CVE-2009-1882

 -- Jamie Strandboge <jamie@xxxxxxxxxx>  Thu, 04 Jun 2009 12:54:55 -0500

References

[Bug 385324] [NEW] Update imagemagick to fix security vulnerability
From: feranick, 2009-06-09