DSA-4481 ruby-mini-magick - security update
|
Información sobre el sistema
|
|
|
Software afectado |
Debian |
Descripción
|
Harsh Jaiswal discovered a remote shell execution vulnerability inruby-mini-magick, a Ruby library providing a wrapper around ImageMagickor GraphicsMagick, exploitable when using MiniMagick::Image.open withspecially crafted URLs coming from unsanitized user input.
More info:
https://www.debian.org/security/2019/dsa-4481 |
Identificadores estándar
|
Propiedad |
Valor |
CVE |
CVE-2019-13574 and DSA-4481. |