ImageMagick version

Akru

September 10, 2018 12:50

I believe you use ImageMagick internally within your API.  Are you able to inform us what the current version of the library you are using please?  What is your policy on addressing security vulnerabilities with 3rd party libraries?

0

• 

  Yakir Perlin

  September 13, 2018 08:57

  Hi Akru,

  True, we indeed use ImageMagick for some of our functionality.

  We are very serious about searching, and patching any security vulnerabilities in both ImageMagick and other 3rd party libraries.

  Recently we discovered the Ghostscript vulnerability and quickly disabled EPS processing.

  In addition, If you know of any vulnerabilities that we are vulnerable to currently, we would love to hear about them. Note that we have a great bug bounty program that you can benefit from.

  Thanks,

  Yakir

  0

Post is closed for comments.