A large number of crashers and thus potential memory corruption issues have been found in imagemagick: http://www.openwall.com/lists/oss-security/2014/12/24/1 I don't know if anyone will go through them and check whether they're CVE-worthy, but almost certainly some of them are security issues. Upstream released 6.9.0-2 which should fix all known issues. Please bump.
+*imagemagick-6.9.0.3 (04 Jan 2015) + + 04 Jan 2015; Justin Lecher <jlec@gentoo.org> -imagemagick-6.9.0.0.ebuild, + +imagemagick-6.9.0.3.ebuild, metadata.xml: + Version BUmp, fixes potential security problems, #534106; do not inject + march, #533634; install some extra_dist files + Still stable version is vulnerable. @graphics, please handle the stabilization.
@arches, please go ahead, testsuite included.
amd64 stable
x86 stable
Stable for HPPA.
ppc stable
Stable on alpha.
arm stable
sparc stable
ppc64 stable
ia64 stable. Maintainer(s), please cleanup. Security, please add it to the existing request, or file a new one.
+ 16 Jan 2015; Justin Lecher <jlec@gentoo.org> -imagemagick-6.8.9.9.ebuild: + Cleaning vulnerable versions #534106 +
Arches and Maintainer(s), Thank you for your work. New GLSA request filed.
*** Bug 582898 has been marked as a duplicate of this bug. ***
This issue was resolved and addressed in GLSA 201606-14 at https://security.gentoo.org/glsa/201606-14 by GLSA coordinator Aaron Bauman (b-man).