aboutsummaryrefslogtreecommitdiff
path: root/doc/todo/ease_archivepage_styling.mdwn
diff options
context:
space:
mode:
authorSimon McVittie <smcv@debian.org>2016-05-05 23:17:45 +0100
committerSimon McVittie <smcv@debian.org>2016-05-05 23:43:50 +0100
commit170cd41489ab25fc3b7a95dd31521dfe522b4f9e (patch)
treea6ce0d308d7304451ec646c3744e24aff7d8853d /doc/todo/ease_archivepage_styling.mdwn
parent545a7bbbf07dd2375a96eae09f9abd6329a919e5 (diff)
downloadikiwiki-170cd41489ab25fc3b7a95dd31521dfe522b4f9e.tar
ikiwiki-170cd41489ab25fc3b7a95dd31521dfe522b4f9e.tar.gz
img: check magic number before giving common formats to ImageMagick
This mitigates CVE-2016-3714 and similar vulnerabilities by avoiding passing obviously-wrong input to ImageMagick decoders.
Diffstat (limited to 'doc/todo/ease_archivepage_styling.mdwn')
0 files changed, 0 insertions, 0 deletions
generated by cgit v1.2.3 (git 2.45.0) at 2024-11-23 15:16:27 +0000