Sign in / up

back to article ImageMagick exploits spotted

Malicious images exploiting server-hijacking holes in ImageMagick have been spotted and documented by web host biz CloudFlare. As we reported last week, ImageMagick – a tool used by countless websites to process images submitted by users – has a pretty bad bug that allows images to execute commands on vulnerable systems. The …

COMMENTS

Post your comment
House rules Send corrections
Add to 'My topics' unstar *
  1. pewpie

    Official badness standarization protocols.

    Recommended ascending order of severity:

    Not bad.

    Pretty bad.

    Plain bad.

    Nobbin' bad.

    Ken Livingstone bad.

    0 0 Reply
  2. Anonymous Coward
    Alert

    Patch AGAIN

    If you applied the 5-line policy.xml patch, patch again. It's 9 lines now, per https://imagetragick.com/

    Or uninstall ImageMagick and install GraphicsMagick (but test if you care; it's not 100% compatible)

    1 0 Reply
    1. Oengus
      Reply Icon

      Re: Patch AGAIN

      "but test if you care"

      I didn't think anyone tested anymore...

      1 0 Reply

POST COMMENT House rules

Not a member of The Register? Create a new account here.

Forgotten password ?

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon