Skip to content

Instantly share code, notes, and snippets.

@thomasgallagher

thomasgallagher/readme.md

Last active February 6, 2023 10:24
Show Gist options
  • Save thomasgallagher/5e5a4061cee98d7443659ff840cf614f to your computer and use it in GitHub Desktop.
Save thomasgallagher/5e5a4061cee98d7443659ff840cf614f to your computer and use it in GitHub Desktop.
Download ZIP
Install ImageMagick 7.1.0-61 to patch CVE-2022-44268 zero day vulnerability on Heroku
Raw
readme.md

1. Add this updated buildpack to install ImageMagick 7.1.0-61

heroku buildpacks:add https://github.com/thomasgallagher/heroku-buildpack-imagemagick --index 1

You can also add this via Settings > Buildpacks on the Heroku dashboard

Optional: Fork this repo and replace the above URL to make it your own:

https://github.com/thomasgallagher/heroku-buildpack-imagemagick

2. Deploy your app

You may need to make a trivial code change to do this.

3. Verify installation

heroku run identify --version

Version: ImageMagick 7.1.0-61 Q16-HDRI x86_64 20866 https://imagemagick.org

4. Ensure your app still works

Run your test suite and manually test any features that make use of ImageMagick.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment