graphics/ImageMagick vulnerability status?
killing at multiplay.co.uk
Tue May 10 14:23:43 UTC 2016
Really doesn't help that they keep revising the fix, 3 releases in 6
days, latest version actually being 6.9.4-1 :(
On 10/05/2016 15:09, Stefan Bethke wrote:
> according to https://www.imagemagick.org/discourse-server/viewtopic.php?f=4&t=29588, a release 6.9.4-0 should be out that improves the situation significantly. It appears that graphics/ImageMagick is at 6.9.3. It would be nice if people who follow ImageMagick more closely than me could speak to the security status of the current port, updates planned, and/or additional mitigation recommended. Heise News is reporting that exploits have been posted and are seen in the wild.
More information about the freebsd-ports