]> git.vanrenterghem.biz Git - git.ikiwiki.info.git/commit
projects / git.ikiwiki.info.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 1ef40ff) | patch
img: check magic number before giving common formats to ImageMagick
authorSimon McVittie <smcv@debian.org>
Thu, 5 May 2016 22:17:45 +0000 (23:17 +0100)
committerSimon McVittie <smcv@debian.org>
Thu, 5 May 2016 22:44:32 +0000 (23:44 +0100)
commit30dda271a3c7c1e8ceb558f1992468c2411afdde
tree230afe239816958305b223d77ea63785df2042d7tree | snapshot
parent1ef40ff68370aba85e9816221675a8edd7a308f5commit | diff
img: check magic number before giving common formats to ImageMagick

This mitigates CVE-2016-3714 and similar vulnerabilities by
avoiding passing obviously-wrong input to ImageMagick decoders.
IkiWiki/Plugin/img.pm diff | blob | history
t/img.t diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.