Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 596002 (CVE-2016-7799)

Summary: <media-gfx/imagemagick- global buffer overflow
Product: Gentoo Security Reporter: Ian Zimmerman <nobrowser>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Severity: normal CC: graphics+disabled
Priority: Normal    
Version: unspecified   
Hardware: All   
OS: Linux   
Whiteboard: B2 [glsa cve]
Package list:
Runtime testing required: ---
Bug Depends on: 596004    
Bug Blocks:    
Description Flags
patch for media-gfx/imagemagick- none

Description Ian Zimmerman 2016-10-03 03:09:24 UTC
According to the announcement on oss-security:

imagemagick identify suffers of a global buffer overflow issue, which I
reported and has been patched, you can find a reproducer in the github bug
tracker issue link


Comment 1 Aaron Bauman (RETIRED) gentoo-dev 2016-10-11 09:04:12 UTC
Here is the patch for =media-gfx/imagemagick-

>=media-gfx/imagemagick- have the patch included already.
Comment 2 Aaron Bauman (RETIRED) gentoo-dev 2016-10-11 09:05:03 UTC
Created attachment 449830 [details, diff]
patch for media-gfx/imagemagick-
Comment 3 Aaron Bauman (RETIRED) gentoo-dev 2016-10-11 10:30:53 UTC
After further discussion with one of the package maintainers they intend to stabilize >=media-gfx/imagemagick-
Comment 4 GLSAMaker/CVETool Bot gentoo-dev 2016-11-30 21:45:40 UTC
This issue was resolved and addressed in
 GLSA 201611-21 at
by GLSA coordinator Aaron Bauman (b-man).