Hi Jakub! On Fri, Oct 29, 2010 at 11:43 PM, Jakub Wilk <[email protected]> wrote: > ImageMagick reads several configuration files[0] from the current working > directory. Unfortunately, this allows local attackers to execute arbitrary > code if ImageMagick is run from an untrusted directory.
I have confirmed it here and forwarded upstream. Thank you! Best regards, Nelson -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
