Legacy ImageMagick Discussions Archive

Use https://github.com/ImageMagick/ImageMagick/discussions instead.
https://magick.imagemagick.org/

Dubious bug with possible security concern

https://magick.imagemagick.org/viewtopic.php?t=18594

Page 1 of 1

Dubious bug with possible security concern

Posted: 2011-04-21T05:55:40-07:00
by broucaries
According to http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=609177 it seems they are a bug with big magick_debug variable
Could not reproduce and reading the code do not know how it could happen (you code safely).

Could you get a glimpse and audit ?

bastien

Re: Dubious bug with possible security concern

Posted: 2011-04-21T08:37:57-07:00
by magick
We cannot reproduce this problem. We set MAGICK_DEBUG to all sorts of values, many that do not make sense and the ImageMagick utilities completed without complaint.

Re: Dubious bug with possible security concern

Posted: 2011-04-22T08:37:28-07:00
by broucaries
I could not reproduce myself, they are now a testcase on the debian bug page. Could you give a try ? Thanks

Does I need to ask more information ?

Re: Dubious bug with possible security concern

Posted: 2011-04-22T08:55:25-07:00
by magick
could not reproduce myself, they are now a testcase on the debian bug page. Could you give a try ? Thanks
Where is the testcase? We looked at http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=609177 and did not see any information on reproducing the bug.
All times are UTC-07:00
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited