Re: CVE-2016-3714 in ImageMagick

2016-05-05 Thread Brian May
Salvatore Bonaccorso writes: > See the discussion about this on > http://www.openwall.com/lists/oss-security/2016/05/03/19 though. Thanks for this. I did see it at the time, however didn't get a chance yet to read it properly. Also see the comment at the bottom of

Ultimas Plantas Eléctricas disponibles para la Venta

2016-05-05 Thread Departamento Venta de Equipos
equipos para la venta en transmaquina estamos constantemente evolucionando buscando nuevas formas de prestarles servicios a nuestros clientes, es por esto que queremos presentarles nuestra división de venta de equipos. actualmente contamos a la fecha con una cartera importante de equipos

[SECURITY] [DLA 458-1] mplayer2 security update

2016-05-05 Thread Thorsten Alteholz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Package: mplayer2 Version: 2.0-554-gf63dbad-1+deb7u1 CVE ID : CVE-2016-4352 Mplayer2 is crashing when playing a fuzzed gif file. The gif demuxes assumes in many places that width*height is <= INT_MAX; this might not be

Accepted mplayer2 2.0-554-gf63dbad-1+deb7u1 (source i386) into oldstable

2016-05-05 Thread dak
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Wed, 05 May 2016 12:03:02 +0200 Source: mplayer2 Binary: mplayer2 mplayer2-dbg Architecture: source i386 Version: 2.0-554-gf63dbad-1+deb7u1 Distribution: wheezy-security Urgency: high Maintainer: Debian Multimedia Maintainers

Re: CVE-2016-3714 in ImageMagick

2016-05-05 Thread Salvatore Bonaccorso
Hi, On Thu, May 05, 2016 at 10:20:06AM +0200, William Dauchy wrote: > Hi Brian, > > Thank you for you answer. > > On Thu, May 5, 2016 at 9:52 AM, Brian May wrote: > > Thanks for you email. > > Looks like imagemagick in wheezy is vulnerable to CVE-2016-3714 to > >

Re: CVE-2016-3714 in ImageMagick

2016-05-05 Thread William Dauchy
Hi Brian, Thank you for you answer. On Thu, May 5, 2016 at 9:52 AM, Brian May wrote: > Thanks for you email. > Looks like imagemagick in wheezy is vulnerable to CVE-2016-3714 to > CVE-2016-3718. > https://security-tracker.debian.org/tracker/source-package/imagemagick > If I

Re: CVE-2016-3714 in ImageMagick

2016-05-05 Thread Brian May
FYI: I CCed the debian-lts list. William Dauchy writes: > On Wed, May 4, 2016 at 4:17 PM, William Dauchy wrote: >> I was looking at your last upload: >> https://packages.qa.debian.org/i/imagemagick/news/20160504T124217Z.html >> >> Could you make sure to