Day: 15 julio, 2019

Publicado el

DSA-4481 ruby-mini-magick – security update

Harsh Jaiswal discovered a remote shell execution vulnerability inruby-mini-magick, a Ruby library providing a wrapper around ImageMagickor GraphicsMagick, exploitable when using MiniMagick::Image.open withspecially crafted URLs coming from unsanitized user input. More info: https://www.debian.org/security/2019/dsa-4481
Acceso Administrador
Translate »