| Anonymous | Login | Signup for a new account | 2024-11-22 13:23 MST |  |
| My View | View Issues | Report Issue | Change Log | Roadmap | My Account |
| View Issue Details [ Jump to Notes ] | [ Issue History ] [ Print ] | ||||||||
| ID | Project | Category | View Status | Date Submitted | Last Update | ||||
| 0000155 | MEGA | [All Projects] Feedback | public | 2016-05-11 11:56 | 2016-05-11 12:43 | ||||
| Reporter | guest | ||||||||
| Assigned To | gstecher | ||||||||
| Priority | normal | Severity | minor | Reproducibility | have not tried | ||||
| Status | resolved | Resolution | no change required | ||||||
| Platform | OS | ||||||||
| Product Version | |||||||||
| Target Version | Fixed in Version | ||||||||
| Summary | 0000155: MEGA5 question | ||||||||
| Description | I am an IT customer service professional. My end users use the product MEGA5. I have recently become aware that a security vulnerability has been identified in a software app called ImageMagick. My question is., Does MEGA5, or any of the newer versions of MEGA utilize the ImageMagick application as a software utility within the larger context of MEGA? Thank you for your assistance. Steven | ||||||||
| Tags | No tags attached. | ||||||||
| Attach Tags | (Separate by ",") | ||||||||
| First Name | Steven | ||||||||
| Last Name | Kirpes | ||||||||
| Steven.J.Kirpes@aphis.usda.gov | |||||||||
| Confirm Email | Steven.J.Kirpes@aphis.usda.gov | ||||||||
| Attached Files |  human-chimp2.zip (896,003 bytes) 1969-12-31 17:33 | ||||||||
 Relationships |
|
 Relationships |
|
Notes |
|
|
(0000074) gstecher (administrator) 1969-12-31 17:33 |
For some reason the file did not uplaod correctly. Email me if you need it for testing. |
|
(0000075) gstecher (administrator) 1969-12-31 17:33 |
Ok, I zipped up the test data file and it seems to have uploaded correctly |
|
(0000130) gstecher (administrator) 1969-12-31 17:33 |
We still need to address this to some degree. Perhaps we can put a note on the progress dialog stating that the alignment is being canceled. One of the people in our lab experienced similar confusion with MEGA 3 Beta 4 when canceling a large alignment. |
|
(0000137) Nikita Vikhrev (reporter) 1969-12-31 17:33 |
I found the data file uploaded in wrong place. I FTPed it in the correct place. |
|
(0000141) Nikita Vikhrev (reporter) 1969-12-31 17:33 |
Gosh, I have spent two whole days to take care of this problem. Now, cancel works immediately in any timings and the dialog box shows the progress very smoothly and never disappears. Yet, if you apply such huge data, the changes in the progress bar are extremely slow. To show that MEGA is alive and the alignment is going in such cases, I have added the MEGA animation on the dialog box. |
|
(0003665) gstecher (administrator) 2016-05-11 12:43 |
Hi Steven, I am writing in response to your question regarding the MEGA5 software. MEGA5 and MEGA6 use the ImageMagick software to export some results visualizations to png files. However, MEGA does not accept any user input that would be passed along to ImageMagick, and the latest security vulnerability regarding ImageMagick is one where malicious input is not handled properly. The newest version of MEGA (MEGA7) does not use ImageMagick at all and I recommend upgrading to this version. -- Best regards, Glen Stecher |
|
Notes |
|
Issue History |
|||
| Date Modified | Username | Field | Change |
| 2016-05-11 11:56 | guest | New Issue | |
| 2016-05-11 12:43 | gstecher | Note Added: 0003665 | |
| 2016-05-11 12:43 | gstecher | Status | new => resolved |
| 2016-05-11 12:43 | gstecher | Resolution | open => no change required |
| 2016-05-11 12:43 | gstecher | Assigned To | => gstecher |
|
Issue History |
| Copyright © 2000 - 2024 MantisBT Team |
|