Dubious bug with possible security concern

Post any defects you find in the released or beta versions of the ImageMagick software here. Include the ImageMagick version, OS, and any command-line required to reproduce the problem. Got a patch for a bug? Post it here.
Post Reply
broucaries
Posts: 467
Joined: 2008-12-21T11:51:10-07:00

Dubious bug with possible security concern

Post by broucaries »

According to http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=609177 it seems they are a bug with big magick_debug variable
Could not reproduce and reading the code do not know how it could happen (you code safely).

Could you get a glimpse and audit ?

bastien
Top
User avatar
magick
Site Admin
Posts: 11064
Joined: 2003-05-31T11:32:55-07:00

Re: Dubious bug with possible security concern

Post by magick »

We cannot reproduce this problem. We set MAGICK_DEBUG to all sorts of values, many that do not make sense and the ImageMagick utilities completed without complaint.
Top
broucaries
Posts: 467
Joined: 2008-12-21T11:51:10-07:00

Re: Dubious bug with possible security concern

Post by broucaries »

I could not reproduce myself, they are now a testcase on the debian bug page. Could you give a try ? Thanks

Does I need to ask more information ?
Top
User avatar
magick
Site Admin
Posts: 11064
Joined: 2003-05-31T11:32:55-07:00

Re: Dubious bug with possible security concern

Post by magick »

could not reproduce myself, they are now a testcase on the debian bug page. Could you give a try ? Thanks
Where is the testcase? We looked at http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=609177 and did not see any information on reproducing the bug.
Top
Post Reply

Return to “Bugs”