Debian 9812 Published by

An imagemagick regression update has been released for Debian GNU/Linux 10 LTS to address a regression introduced by the previous update.



DLA 3357-2: imagemagick regression update


- -------------------------------------------------------------------------
Debian LTS Advisory DLA-3357-2 debian-lts@lists.debian.org
  https://www.debian.org/lts/security/ Bastien Roucariès
March 18, 2023   https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package : imagemagick
Version : 8:6.9.10.23+dfsg-2.1+deb10u4
CVE ID :
Debian Bug : #1032998

The previous Imagemagick security update caused a regression in some
perl packages due to overly restrictive hardening in a policy update
(reading from /etc/ was forbidden). This hardening patch has been
removed.

For Debian 10 buster, this problem has been fixed in version
8:6.9.10.23+dfsg-2.1+deb10u4.

We recommend that you upgrade your imagemagick packages.

For the detailed security status of imagemagick please refer to
its security tracker page at:
  https://security-tracker.debian.org/tracker/imagemagick

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at:   https://wiki.debian.org/LTS