Package: libmagick9 Version: 6.2.4.5.dfsg1-0.9 Severity: grave Tags: security patch
http://www.overflow.pl/adv/imsgiheap.txt reported a buffer overflow in the SGI parser (demo exploit linked in the report). This has been assigned CVE-2006-4144, please mention this number in the changelog when you fix this. Ubuntu patch: http://people.ubuntu.com/patches/imagemagick.CVE-2006-4144.diff Thanks, Martin -- Martin Pitt http://www.piware.de Ubuntu Developer http://www.ubuntu.com Debian Developer http://www.debian.org In a world without walls and fences, who needs Windows and Gates?
signature.asc
Description: Digital signature
