Re: graphicsmagick / CVE-2016-7447

To: Brian May <brian@linuxpenguins.xyz>, Laszlo Boszormenyi <gcs@debian.org>
Cc: team@security.debian.org, debian-lts@lists.debian.org
Subject: Re: graphicsmagick / CVE-2016-7447
From: Luciano Bello <luciano@debian.org>
Date: Mon, 19 Sep 2016 13:14:49 -0400
Message-id: <[🔎] 3357847.8JA21Eyi59@box>
In-reply-to: <[🔎] 87zin4l2is.fsf@prune.linuxpenguins.xyz>
References: <[🔎] 87zin4l2is.fsf@prune.linuxpenguins.xyz>

On Monday 19 September 2016 18.25.31 Brian May wrote:
> While the code is a significant improvement on the old code, does this
> justify a security update?
> 
> Possibly the answer is Yes, when combined with fixes for the other
> security issues against graphicsmagick. Thought I should check here
> however.

We have many pending issues with graphicsmagick, so we can definitely add this 
one in the list.

Laszlo, are you still working on this?

Cheers, luciano

Reply to:

Follow-Ups:
- Re: graphicsmagick / CVE-2016-7447
  - From: László Böszörményi (GCS) <gcs@debian.org>

References:
- graphicsmagick / CVE-2016-7447
  - From: Brian May <brian@linuxpenguins.xyz>

Prev by Date: Re: graphicsmagick / CVE-2016-7447
Next by Date: Re: Please use clean chroot (sbuild/pbuilder/etc.) for LTS uploads
Previous by thread: graphicsmagick / CVE-2016-7447
Next by thread: Re: graphicsmagick / CVE-2016-7447
Index(es):
- Date
- Thread