Is there a proper fix for DSA-4316?
Posted: 2018-10-16T18:41:11-07:00
Haiyo,
Recently a website I maintain stopped working due to a policy update.
My understanding comes from this Stack Overflow post: https://stackoverflow.com/questions/52817741/
As well as this page on SecurityDatabase.com: https://www.security-database.com/detai ... t=DSA-4316
The modified policy disables reading PDF files, which is an important function for our service. The only way we've found to solve the problem is by removing the policy updates.
Is there a proper way to configure ImageMagick to be protected from this vulnerability while still reading PDF files, or is a proper fix still pending?
Recently a website I maintain stopped working due to a policy update.
My understanding comes from this Stack Overflow post: https://stackoverflow.com/questions/52817741/
As well as this page on SecurityDatabase.com: https://www.security-database.com/detai ... t=DSA-4316
The modified policy disables reading PDF files, which is an important function for our service. The only way we've found to solve the problem is by removing the policy updates.
Is there a proper way to configure ImageMagick to be protected from this vulnerability while still reading PDF files, or is a proper fix still pending?