{"id":6370,"date":"2016-05-17T20:22:08","date_gmt":"2016-05-17T11:22:08","guid":{"rendered":"http:\/\/www.skyarch.net\/blog\/?p=6370"},"modified":"2016-05-18T11:34:50","modified_gmt":"2016-05-18T02:34:50","slug":"%e8%84%86%e5%bc%b1%e6%80%a7%e6%83%85%e5%a0%b1imagemagick%e3%81%ab%e8%84%86%e5%bc%b1%e6%80%a7%e3%81%8c%e7%99%ba%e8%a6%8b%e3%81%95%e3%82%8c%e3%81%be%e3%81%97%e3%81%9fimagetragick","status":"publish","type":"post","link":"https:\/\/www.skyarch.net\/blog\/%e8%84%86%e5%bc%b1%e6%80%a7%e6%83%85%e5%a0%b1imagemagick%e3%81%ab%e8%84%86%e5%bc%b1%e6%80%a7%e3%81%8c%e7%99%ba%e8%a6%8b%e3%81%95%e3%82%8c%e3%81%be%e3%81%97%e3%81%9fimagetragick\/","title":{"rendered":"[\u8106\u5f31\u6027\u60c5\u5831]ImageMagick\u306b\u8106\u5f31\u6027\u304c\u767a\u898b\u3055\u308c\u307e\u3057\u305f(ImageTragick)"},"content":{"rendered":"

\u3053\u3093\u306b\u3061\u306f\u3001\u661f\u3067\u3059\u3002<\/p>\n

\u4eca\u56de\u306fOpenSSL\u3068ImageMagick\u306e\u4e8c\u672c\u7acb\u3066\u3067\u3059\uff08\u4e8c\u672c\u76ee\uff09<\/p>\n

\u901a\u79f0\u300cImageTragick\u300d\u3068\u547c\u3070\u308c\u308bImageMagick\u306e\u8106\u5f31\u6027\u60c5\u5831\u304c\u516c\u958b\u3055\u308c\u307e\u3057\u305f\u3002<\/p>\n

\u672c\u8106\u5f31\u6027\u3092\u60aa\u7528\u3059\u308b\u3053\u3068\u3067\u3001\u4efb\u610f\u306eOS\u30b3\u30de\u30f3\u30c9\u3092\u5b9f\u884c\u3055\u308c\u308b\u53ef\u80fd\u6027\u3082\u3042\u308a\u307e\u3059\u3002<\/p>\n

\u7c21\u5358\u3067\u3059\u304c\u3001\u6982\u8981\u3092\u307e\u3068\u3081\u3066\u307f\u307e\u3059\u3002<\/p>\n

 <\/p>\n

\u30fb\u5bfe\u8c61<\/h3>\n

-ImageMagick 6 \u7cfb\u5217 6.9.3-9 \u304a\u3088\u3073\u305d\u308c\u4ee5\u524d<\/p>\n

-ImageMagick 7 \u7cfb\u5217 7.0.1-0 \u304a\u3088\u3073\u305d\u308c\u4ee5\u524d<\/p>\n

Amazon Linuix\u3001Redhat , CentOS \u30d1\u30c3\u30b1\u30fc\u30b8\u63d0\u4f9b\u306eImageMagick\u3082\u5e45\u5e83\u3044\u7bc4\u56f2\u3067\u5bfe\u8c61\u3068\u306a\u3063\u3066\u3044\u307e\u3059\u3002<\/p>\n

 <\/p>\n

\u30fb\u5bfe\u7b56<\/h3>\n

\u6052\u4e45\u5bfe\u7b56\u3068\u3057\u3066\u53ef\u80fd\u306a\u9650\u308a\u4fee\u6b63\u6e08\u307fImageMagick\u3078\u306e\u30a2\u30c3\u30d7\u30c7\u30fc\u30c8\u3092\u5b9f\u65bd\u3057\u307e\u3057\u3087\u3046\u3002<\/p>\n

OS\u7d44\u307f\u8fbc\u307f\u306e\u30d1\u30c3\u30b1\u30fc\u30b8\u306b\u3064\u3044\u3066\u306f\u63d0\u4f9b\u5143\u306e\u30ea\u30ea\u30fc\u30b9\u3092\u78ba\u8a8d\u3057\u3066\u304f\u3060\u3055\u3044\u3002<\/p>\n

 <\/p>\n

\u56de\u907f\u7b56\u3068\u3057\u3066policy.xml\u3067\u51e6\u7406\u3092\u5236\u9650\u3059\u308b\u3053\u3068\u3067\u8106\u5f31\u6027\u306e\u5f71\u97ff\u3092\u7de9\u548c\u3059\u308b\u3053\u3068\u304c\u53ef\u80fd\u3067\u3059\u3002<\/p>\n

ImageMagick Security Issue<\/a><\/p>\n

 <\/p>\n

\u591a\u304f\u306eOS\u3067\u4fee\u6b63\u30d0\u30fc\u30b8\u30e7\u30f3\u304c\u63d0\u4f9b\u3055\u308c\u3066\u3044\u308b\u305f\u3081\u3001\u53ef\u80fd\u306a\u9650\u308a\u4fee\u6b63\u30d0\u30fc\u30b8\u30e7\u30f3\u3078\u306e\u30a2\u30c3\u30d7\u30c7\u30fc\u30c8\u3092\u5b9f\u65bd\u3057\u307e\u3057\u3087\u3046\u3002<\/p>\n

 <\/p>\n

\u30fb\u3055\u3044\u3054\u306b<\/h3>\n

\u4eca\u56de\u306f\u8106\u5f31\u6027\u60c5\u5831\u3092\u4e8c\u672c\u7acb\u3066\u3067\u304a\u9001\u308a\u3057\u307e\u3057\u305f\u3002<\/p>\n

\u8106\u5f31\u6027\u60c5\u5831\u306f\u306a\u305c\u304b\u5927\u578b\u9023\u4f11\u3092\u72d9\u3044\u3059\u307e\u3057\u305f\u304b\u306e\u3088\u3046\u306b\u767a\u8868\u3055\u308c\u308b\u306e\u306f\u79c1\u306e\u6c17\u306e\u305b\u3044\u3067\u3057\u3087\u3046\u304b\u30fb\u30fb\u30fb\uff08\u4eca\u56de\u306fGW\uff09<\/p>\n

 <\/p>\n

\u30fb\u53c2\u8003\u60c5\u5831<\/h3>\n

ImageMagick \u306e\u8106\u5f31\u6027 (CVE-2016-3714) \u306b\u95a2\u3059\u308b\u6ce8\u610f\u559a\u8d77<\/a><\/p>\n

JVNVU#92998929 ImageMagick \u306b\u5165\u529b\u5024\u691c\u8a3c\u4e0d\u5099\u306e\u8106\u5f31\u6027<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

\u3053\u3093\u306b\u3061\u306f\u3001\u661f\u3067\u3059\u3002 \u4eca\u56de\u306fOpenSSL\u3068ImageMagick\u306e\u4e8c\u672c\u7acb\u3066\u3067\u3059\uff08\u4e8c\u672c\u76ee\uff09 \u901a\u79f0\u300cImageTragick\u300d\u3068\u547c\u3070\u308c\u308bImageMagick\u306e\u8106\u5f31\u6027\u60c5\u5831\u304c\u516c\u958b\u3055\u308c\u307e\u3057\u305f\u3002 \u672c\u8106\u5f31\u6027\u3092\u60aa\u7528\u3059\u308b\u3053\u3068\u3067\u3001\u4efb\u610f\u306e…<\/p>\n","protected":false},"author":1,"featured_media":410,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_locale":"ja","_original_post":"6370","footnotes":""},"categories":[72],"tags":[126,101],"class_list":{"0":"post-6370","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-vulnerable","8":"tag-imagemagick","9":"tag-101","10":"ja"},"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/www.skyarch.net\/blog\/wp-json\/wp\/v2\/posts\/6370","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.skyarch.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.skyarch.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.skyarch.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.skyarch.net\/blog\/wp-json\/wp\/v2\/comments?post=6370"}],"version-history":[{"count":6,"href":"https:\/\/www.skyarch.net\/blog\/wp-json\/wp\/v2\/posts\/6370\/revisions"}],"predecessor-version":[{"id":6374,"href":"https:\/\/www.skyarch.net\/blog\/wp-json\/wp\/v2\/posts\/6370\/revisions\/6374"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.skyarch.net\/blog\/wp-json\/wp\/v2\/media\/410"}],"wp:attachment":[{"href":"https:\/\/www.skyarch.net\/blog\/wp-json\/wp\/v2\/media?parent=6370"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.skyarch.net\/blog\/wp-json\/wp\/v2\/categories?post=6370"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.skyarch.net\/blog\/wp-json\/wp\/v2\/tags?post=6370"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}