Discover Centmin Mod today
Register Now

Beta Branch add tools/imagemagick-fix.sh for CVE-2016-3714

Discussion in 'Centmin Mod Github Commits' started by eva2000, May 6, 2016.

  1. eva2000

    eva2000 Administrator Staff Member

    30,145
    6,782
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +10,133
    Local Time:
    7:41 PM
    Nginx 1.13.x
    MariaDB 5.5
    add tools/imagemagick-fix.sh for CVE-2016-3714

    Workaround script to auto patch fix imagemagick vulnerabilities like CVE-2016-3714 on Centmin Mod LEMP systems when they run centmin.sh. Works behind the scenes as added precaution. Script was written for Centmin Mod LEMP stack installs and cpanel usage (for my paying consult clients) and implements the recommendations made by Redhat at Security - ImageMagick vulnerabilities place countless websites at risk, active exploitation confirmed including accounting for cpanel possibility of more than one version of imagemagick being installed - common cpanel version and official centos yum repo versions.

    Automation via imagick_fixes function Beta Branch - add imagick_fixes function to inc/cpcheck.inc for 123.09beta01

    Continue reading...

    123.09beta01 branch
     
    Last edited: May 6, 2016