[Bug 2176861] New: ImageMagick: Specially crafted SVG leads to segmentation fault and generate trash files in "/tmp", possible to leverage DoS [fedora-36]
by bugzilla@redhat.com
https://bugzilla.redhat.com/show_bug.cgi?id=2176861
Bug ID: 2176861
Summary: ImageMagick: Specially crafted SVG leads to
segmentation fault and generate trash files in "/tmp",
possible to leverage DoS [fedora-36]
Product: Fedora
Version: 36
Status: NEW
Component: ImageMagick
Keywords: Security, SecurityTracking
Severity: medium
Priority: medium
Assignee: luya_tfz(a)thefinalzone.net
Reporter: saroy(a)redhat.com
QA Contact: extras-qa(a)fedoraproject.org
CC: blaise(a)gmail.com, davide(a)cavalca.name,
epel-packagers-sig(a)lists.fedoraproject.org,
fedora(a)famillecollet.com, luya_tfz(a)thefinalzone.net,
michel(a)michel-slm.name, ngompa13(a)gmail.com,
pampelmuse(a)gmx.at, sergio(a)serjux.com,
troy(a)troycurtisjr.com
Target Milestone: ---
Classification: Fedora
More information about this security flaw is available in the following bug:
http://bugzilla.redhat.com/show_bug.cgi?id=2176858
Disclaimer: Community trackers are created by Red Hat Product Security team on
a best effort basis. Package maintainers are required to ascertain if the flaw
indeed affects their package, before starting the update process.
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2176861
1 year, 2 months
[Bug 2176860] New: ImageMagick: Specially crafted SVG leads to segmentation fault and generate trash files in "/tmp", possible to leverage DoS [epel-8]
by bugzilla@redhat.com
https://bugzilla.redhat.com/show_bug.cgi?id=2176860
Bug ID: 2176860
Summary: ImageMagick: Specially crafted SVG leads to
segmentation fault and generate trash files in "/tmp",
possible to leverage DoS [epel-8]
Product: Fedora EPEL
Version: epel8
Status: NEW
Component: ImageMagick
Keywords: Security, SecurityTracking
Severity: medium
Priority: medium
Assignee: luya_tfz(a)thefinalzone.net
Reporter: saroy(a)redhat.com
QA Contact: extras-qa(a)fedoraproject.org
CC: blaise(a)gmail.com, davide(a)cavalca.name,
epel-packagers-sig(a)lists.fedoraproject.org,
fedora(a)famillecollet.com, luya_tfz(a)thefinalzone.net,
michel(a)michel-slm.name, ngompa13(a)gmail.com,
pampelmuse(a)gmx.at, sergio(a)serjux.com,
troy(a)troycurtisjr.com
Target Milestone: ---
Classification: Fedora
More information about this security flaw is available in the following bug:
http://bugzilla.redhat.com/show_bug.cgi?id=2176858
Disclaimer: Community trackers are created by Red Hat Product Security team on
a best effort basis. Package maintainers are required to ascertain if the flaw
indeed affects their package, before starting the update process.
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2176860
1 year, 2 months
[Bug 2182121] New: Stop requiring ghostscript-x11 in ImageMagick
by bugzilla@redhat.com
https://bugzilla.redhat.com/show_bug.cgi?id=2182121
Bug ID: 2182121
Summary: Stop requiring ghostscript-x11 in ImageMagick
Product: Fedora
Version: 38
Status: NEW
Component: ImageMagick
Severity: urgent
Assignee: luya_tfz(a)thefinalzone.net
Reporter: luya_tfz(a)thefinalzone.net
QA Contact: extras-qa(a)fedoraproject.org
CC: blaise(a)gmail.com, davide(a)cavalca.name,
epel-packagers-sig(a)lists.fedoraproject.org,
fedora(a)famillecollet.com, luya_tfz(a)thefinalzone.net,
michel(a)michel-slm.name, ngompa13(a)gmail.com,
pampelmuse(a)gmx.at, sergio(a)serjux.com
Target Milestone: ---
Classification: Fedora
Description of problem:
From the maintainer of Ghostcripts:
"Ghostscript upstream dropped support of x11 dynamic devices due to security
reasons since version 10.0.0.
Because of that we will stop shipping ghostscript-x11 subpackage and the X
driver will be built directly into the gs library."
Version-Release number of selected component (if applicable):
7.1.1.4
How reproducible:
Always
Steps to Reproduce:
1.
2.
3.
Actual results:
Expected results:
Drop ghostscript-x11 requirement
Additional info:
Issue only affects ImageMagick7 as found on both Rawhide and F38
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2182121
1 year, 2 months
[Bug 2182303] New: Create an all-inclusive isl package
by bugzilla@redhat.com
https://bugzilla.redhat.com/show_bug.cgi?id=2182303
Bug ID: 2182303
Summary: Create an all-inclusive isl package
Product: Fedora
Version: rawhide
Hardware: All
OS: Linux
Status: NEW
Component: isl
Severity: low
Assignee: jlaw(a)ventanamicro.com
Reporter: ijaaskelainen(a)outlook.com
QA Contact: extras-qa(a)fedoraproject.org
CC: davide(a)cavalca.name, dhowells(a)redhat.com,
epel-packagers-sig(a)lists.fedoraproject.org,
jakub(a)redhat.com, jlaw(a)ventanamicro.com
Target Milestone: ---
Classification: Fedora
This recipe is from debian:
Paketti libisl15
stretch (oldoldstable) (libs): manipulating sets and relations of integer
points bounded by linear constraints
0.18-1: amd64 arm64 armel armhf i386 mips mips64el mipsel ppc64el s390x
Paketti libisl19
buster (oldstable) (libs): manipulating sets and relations of integer points
bounded by linear constraints
0.20-2: amd64 arm64 armel armhf i386 mips mips64el mipsel ppc64el s390x
Paketti libisl23
bookworm (testing) (libs): manipulating sets and relations of integer points
bounded by linear constraints
0.25-1: amd64 arm64 armel armhf i386 mips64el mipsel ppc64el s390x
All in the isl package. Thank you.
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2182303
1 year, 2 months