{"id":3211,"date":"2018-03-01T12:19:50","date_gmt":"2018-03-01T04:19:50","guid":{"rendered":"http:\/\/cn.hostease.com\/xueyuan\/?p=3211"},"modified":"2018-03-01T12:19:50","modified_gmt":"2018-03-01T04:19:50","slug":"imagemagick%e4%bf%a1%e6%81%af%e6%b3%84%e9%9c%b2%e6%bc%8f%e6%b4%9e%ef%bc%88cve-2018-5358%ef%bc%89","status":"publish","type":"post","link":"https:\/\/cn.hostease.com\/xueyuan\/uncategorized\/imagemagick%e4%bf%a1%e6%81%af%e6%b3%84%e9%9c%b2%e6%bc%8f%e6%b4%9e%ef%bc%88cve-2018-5358%ef%bc%89\/","title":{"rendered":"ImageMagick\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff08CVE-2018-5358\uff09"},"content":{"rendered":"

\u53d1\u5e03\u65e5\u671f\uff1a<\/strong>2018-01-22
\n\u66f4\u65b0\u65e5\u671f\uff1a<\/strong>2018-02-07<\/p>\n

\u53d7\u5f71\u54cd\u7cfb\u7edf\uff1a<\/strong><\/p>\n

ImageMagick ImageMagick 7.0.7-22 Q16<\/p><\/blockquote>\n

\u63cf\u8ff0\uff1a<\/strong><\/p>\n

\n

BUGTRAQ\u00a0 ID: 102762<\/a>
\nCVE(CAN) ID: CVE-2018-5358<\/a><\/p>\n

ImageMagick\u662f\u4e00\u6b3eUnix\/Linux\u5e73\u53f0\u4e0b\u5f00\u6e90\u7684\u56fe\u50cf\u67e5\u770b\u548c\u7f16\u8f91\u5de5\u5177\u3002<\/p>\n

ImageMagick 7.0.7-22 Q16\u7248\u672c\uff0ccoders\/json.c\/EncodeImageAttributes\u51fd\u6570\u4e2d\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff0c\u6210\u529f\u5229\u7528\u540e\u53ef\u4f7f\u653b\u51fb\u8005\u83b7\u53d6\u654f\u611f\u4fe1\u606f\u3002<\/p>\n

<*\u6765\u6e90\uff1aNsfocus Security Team \uff08security@nsfocus.com<\/a>\uff09
\n*><\/p>\n

\u5efa\u8bae\uff1a<\/strong><\/p>\n

\n

\u5382\u5546\u8865\u4e01\uff1a<\/p>\n

ImageMagick
\n———–
\n\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u8fd9\u4e2a\u5b89\u5168\u95ee\u9898\uff0c\u8bf7\u5230\u5382\u5546\u7684\u4e3b\u9875\u4e0b\u8f7d\uff1a<\/p>\n

https:\/\/github.com\/ImageMagick\/ImageMagick\/issues\/939<\/a>
\nhttps:\/\/www.imagemagick.org\/<\/a>
\nhttps:\/\/bugzilla.redhat.com\/show_bug.cgi?id=1534380<\/a>
\nhttps:\/\/access.redhat.com\/security\/cve\/CVE-2018-5358<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

\u53d1\u5e03\u65e5\u671f\uff1a2018-01-22 \u66f4\u65b0\u65e5\u671f\uff1a2018-02-07 \u53d7\u5f71\u54cd\u7cfb\u7edf\uff1a ImageMagick Imag … \u9605\u8bfb\u66f4\u591a<\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[1],"tags":[],"class_list":["post-3211","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"aioseo_notices":[],"jetpack_featured_media_url":"","jetpack-related-posts":[],"jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/cn.hostease.com\/xueyuan\/wp-json\/wp\/v2\/posts\/3211","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cn.hostease.com\/xueyuan\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cn.hostease.com\/xueyuan\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cn.hostease.com\/xueyuan\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/cn.hostease.com\/xueyuan\/wp-json\/wp\/v2\/comments?post=3211"}],"version-history":[{"count":1,"href":"https:\/\/cn.hostease.com\/xueyuan\/wp-json\/wp\/v2\/posts\/3211\/revisions"}],"predecessor-version":[{"id":3212,"href":"https:\/\/cn.hostease.com\/xueyuan\/wp-json\/wp\/v2\/posts\/3211\/revisions\/3212"}],"wp:attachment":[{"href":"https:\/\/cn.hostease.com\/xueyuan\/wp-json\/wp\/v2\/media?parent=3211"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cn.hostease.com\/xueyuan\/wp-json\/wp\/v2\/categories?post=3211"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cn.hostease.com\/xueyuan\/wp-json\/wp\/v2\/tags?post=3211"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}