[Epel-packagers-sig] [Bug 2254991] CVE-2022-48541 ImageMagick: memory leak in identify -help [epel-8]

24 May 2024

      https://bugzilla.redhat.com/show_bug.cgi?id=2254991
Carl George 🤠 carl@redhat.com changed:
What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |carl@redhat.com
             Status|NEW                         |CLOSED
         Resolution|---                         |ERRATA
   Fixed In Version|                            |ImageMagick-6.9.12.48-2.el8
        Last Closed|                            |2024-05-24 06:26:36
--- Comment #2 from Carl George 🤠 carl@redhat.com ---
According to the parent bug, this was fixed in this commit.
https://github.com/ImageMagick/ImageMagick6/commit/004194253242af71adf5b70e1...
That commit has been included in ImageMagick6 since 6.9.11.46.  EPEL 8 was
updated to 6.9.12.48 which included the fix back in 2022, resolving this issue.
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2022-62b1a9e158
As an aside, EPEL 9's first version was 6.9.12.40, so it has never been
vulnerable to this.
-- 
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2254991

Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report...

2024

2023

2022

2021

[Epel-packagers-sig] [Bug 2254991] CVE-2022-48541 ImageMagick: memory leak in identify -help [epel-8]