Re: [userland-discuss] Code review request - http://tbd.cz.oracle.com/~vm156888/webrev/6955594_imagemagick/

Vladimir Marek Fri, 26 Aug 2011 07:07:38 -0700

I'm sorry to be pushy, but it is S11 stopper ...

> This fix is supposed to close 4 CVEs:
> 
> http://tbd.cz.oracle.com/~vm156888/webrev/6955594_imagemagick/                
>                                                                               
>  
> 
> CVE-2007-4985, CVE-2007-4986 and CVE-2007-4988 - I just remove the
> support of the affected image file formats. They are not very common so
> it should not hurt much.
> 
> CVE-2007-4987 - the description is verbatim enough to fix the issue
> ourselves.
> 
> The CR lists fifth CVE-2010-4167, but that does not affect us.


-- 
        Vlad
_______________________________________________
userland-discuss mailing list
[email protected]
http://mail.opensolaris.org/mailman/listinfo/userland-discuss

Re: [userland-discuss] Code review request - http://tbd.cz.oracle.com/~vm156888/webrev/6955594_imagemagick/

Reply via email to