Date: Tue, 27 Sep 2016 21:15:25 +0000 From: bugzilla-noreply@freebsd.org To: freebsd-ports-bugs@FreeBSD.org Subject: [Bug 213032] graphics/ImageMagick: Upgrade to 6.9.5-10 (security fixes) Message-ID: <bug-213032-13@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D213032 Bug ID: 213032 Summary: graphics/ImageMagick: Upgrade to 6.9.5-10 (security fixes) Product: Ports & Packages Version: Latest Hardware: Any URL: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=3D8367 76#10 OS: Any Status: New Keywords: patch, security Severity: Affects Some People Priority: --- Component: Individual Port(s) Assignee: kwm@FreeBSD.org Reporter: vlad-fbsd@acheronmedia.com CC: ports-secteam@FreeBSD.org Flags: maintainer-feedback?(kwm@FreeBSD.org), merge-quarterly? Assignee: kwm@FreeBSD.org Created attachment 175206 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D175206&action= =3Dedit Upgrade ImageMagick to 6.9.5-10 Please upgrade ImageMagick. There are some security vulns apparently fixed since the current version, but unfortunately I can't make heads or tails of= it, there's no single concise list of such issues that I could find, except this Debian security advisory. https://www.debian.org/security/2016/dsa-3675 More specifically, list of issues fixed in Debian in 6.9.5-{8,9}: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=3D836776#10 I also don't know if ImageMagick7 is affected. The patch builds fine in a Poudriere 11.0-RELEASE amd64 jail. Currently tes= ting 10.3 and 9.3. It takes a while since the build is rather large, esp. with X= 11. --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-213032-13>