Change log for graphicsmagick package in Debian
| 1 → 75 of 136 results | First • Previous • Next • Last |
| Published in sid-release |
graphicsmagick (1.4+really1.3.43-1) unstable; urgency=high * New upstream release, including many security fixes. * Update library symbols for this release. -- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 24 Mar 2024 20:46:14 +0100
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.42-1.1) unstable; urgency=medium * Non-maintainer upload. * Rename libraries for 64-bit time_t transition. Closes: #1063117 -- Benjamin Drung <email address hidden> Fri, 01 Mar 2024 12:05:32 +0000
Available diffs
| Deleted in experimental-release (Reason: None provided.) |
graphicsmagick (1.4+really1.3.42-1.1~exp1) experimental; urgency=medium * Non-maintainer upload. * Rename libraries for 64-bit time_t transition. -- Steve Langasek <email address hidden> Mon, 05 Feb 2024 07:26:50 +0000
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.42-1) unstable; urgency=high * New upstream release, including many security fixes. -- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 24 Sep 2023 16:35:56 +0200
Available diffs
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.41-1) unstable; urgency=medium * New upstream release. * Use binary-targets for Rules-Requires-Root (closes: #1011774). * Update Standards-Version to 4.6.2 . * Update library symbols for this release. -- Laszlo Boszormenyi (GCS) <email address hidden> Tue, 15 Aug 2023 17:33:11 +0200
Available diffs
graphicsmagick (1.4+really1.3.40-4) unstable; urgency=medium * Remove development ifdef from memory leak fix. -- Laszlo Boszormenyi (GCS) <email address hidden> Mon, 17 Apr 2023 19:17:10 +0200
Available diffs
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.40-3) unstable; urgency=high
* Backport security fixes:
- MIFF reader able to provide attribute data in way which results in
a heap overflow,
- SetImageAttribute(): eliminate memory leak when handling attribute
with key "EXIF:Orientation".
-- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 16 Apr 2023 14:21:32 +0200
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.40-2) unstable; urgency=medium * Don't force tiff dependency, let shlibs handle it (closes: #1029212). -- Laszlo Boszormenyi (GCS) <email address hidden> Thu, 19 Jan 2023 19:44:45 +0100
Available diffs
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.40-1) unstable; urgency=medium * New upstream release. * Update Standards-Version to 4.6.1 . -- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 15 Jan 2023 08:33:55 +0100
Available diffs
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.39-2) unstable; urgency=medium
* Backport security fix WritePCXImage(): Fix heap overflow when writing
more than 1023 scenes, and also eliminate use of uninitialized memory.
-- Laszlo Boszormenyi (GCS) <email address hidden> Fri, 30 Dec 2022 23:25:30 +0100
Available diffs
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.39-1) unstable; urgency=medium * New upstream release. * Enable JPEG XL format support (closes: #1026220). * Migrate gsfonts dependencies to fonts-urw-base35 (closes: #1020373). -- Laszlo Boszormenyi (GCS) <email address hidden> Tue, 27 Dec 2022 08:32:14 +0100
Available diffs
| Published in bullseye-release |
graphicsmagick (1.4+really1.3.36+hg16481-2+deb11u1) bullseye-security; urgency=medium * CVE-2022-1270 -- Moritz Muehlenhoff <email address hidden> Thu, 24 Nov 2022 21:50:54 +0100
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.38+hg16870-1) unstable; urgency=high * Mercurial snapshot, fixing several security issues. -- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 11 Dec 2022 07:59:31 +0100
Available diffs
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.38+hg16739-1) unstable; urgency=high
* Mercurial snapshot, fixing the following security issue:
- ReadSVGImage(): null pointer dereference by checking return from
xmlCreatePushParserCtxt() .
* Restore non-const Image::colorMapSize() since it caused an ABI change
(closes: #1019158).
-- Laszlo Boszormenyi (GCS) <email address hidden> Tue, 06 Sep 2022 18:30:49 +0200
Available diffs
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.38+hg16728-1) unstable; urgency=high
* Mercurial snapshot, fixing the following security issues:
- ThrowLoggedException(): dereference after NULL check,
- ReadJP2Image(): division by float zero,
- MagickXMakeMagnifyImage(): division by zero,
- ScaleImage(): resource leak,
- GetLocaleMessageFromTag(): out of bounds read,
- DrawPrimitive(): out of bounds access,
- ReadOnePNGImage(): use of uninitialized value,
- ReadMNGImage(): heap use after free in CloseBlob(),
- ReadMNGImage(): indirect leak,
- ReadOnePNGImage(): indirect leak in MagickMallocCleared().
-- Laszlo Boszormenyi (GCS) <email address hidden> Thu, 11 Aug 2022 23:50:27 +0200
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.38-1) unstable; urgency=high * New upstream release, including many security fixes. * Update watch file. -- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 27 Mar 2022 09:47:45 +0200
Available diffs
| Published in buster-release |
graphicsmagick (1.4+really1.3.35-1~deb10u2) buster; urgency=high
[ Thorsten Alteholz <email address hidden> ]
* CVE-2020-12672
Fix for a heap-based buffer overflow in ReadMNGImage() in coders/png.c.
-- Laszlo Boszormenyi (GCS) <email address hidden> Fri, 31 Dec 2021 16:41:12 +0100
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.37+hg16670-1) unstable; urgency=medium
* Mercurial snapshot:
- ReadJPEGImage(): Store embedded profiles in image, even if in 'ping'
mode (closes: #1006374).
-- Laszlo Boszormenyi (GCS) <email address hidden> Sat, 26 Feb 2022 17:55:22 +0100
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.37+hg16662-1) unstable; urgency=medium
* Mercurial snapshot, fixing the following security issues:
- ReadMATImageV4(): change 'ldblk' to size_t and check related
calculations for overflow and to avoid possible negative seek offsets,
- ReadMATImage(): change 'ldblk' to size_t and check related calculations
for overflow and to avoid possible negative seek offsets,
- added a ReadResource limit via the MAGICK_LIMIT_READ environment
variable on how many uncompressed file bytes may be read while decoding
an input file,
- DecodeImage(): assure that the claimed scanline length is within the
bounds of the scanline allocation to avoid possible heap overflow,
- ReadBlob(): fix EOF logic, an use-of-uninitialized-value in
SyncImageCallBack,
- ReadBlobStream(): fix EOF logic, an use-of-uninitialized-value in
WritePNMImage.
* Build with HEIF image format support.
* Update library symbols for this release.
-- Laszlo Boszormenyi (GCS) <email address hidden> Fri, 11 Feb 2022 18:39:16 +0100
Available diffs
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.37-1) unstable; urgency=high
* New upstream release, including many security fixes.
* Update library symbols for this release.
[ Vagrant Cascadian <email address hidden> ]
* Pass MVDelegate to configure for fixing reproducible builds on usrmerge
systems (closes: #990084).
-- Laszlo Boszormenyi (GCS) <email address hidden> Mon, 13 Dec 2021 17:50:54 +0100
Available diffs
graphicsmagick (1.4+really1.3.36+hg16481-2) unstable; urgency=medium
* Backport fix for use appropriate memory deallocator for memory returned
by StringToList() (closes: #991380).
-- Laszlo Boszormenyi (GCS) <email address hidden> Sat, 24 Jul 2021 11:42:42 +0200
Available diffs
graphicsmagick (1.4+really1.3.36+hg16481-1) unstable; urgency=high
* Mercurial snapshot, fixing the following security issues:
- ProcessStyleClassDefs(): fix non-terminal loop caused by a
self-referential list which results in huge memory usage,
- MSLCDataBlock(): fix leak of value from xmlNewCDataBlock(),
- ProcessStyleClassDefs(): fix memory leak upon malformed class name list,
- ProcessStyleClassDefs(): fix non-terminal loop and huge memory
allocation caused by self-referential list,
- SVGReference(): fix memory leak when parser node is null,
- MSLStartElement(): fix assertion in TranslateText() when there are no
attributes available.
-- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 28 Feb 2021 23:26:56 +0100
Available diffs
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.36+hg16472-1) unstable; urgency=high
* Mercurial snapshot, fixing the following security issues:
- ReadJP2Image(): validate that file header is a format we expect Jasper
to decode,
- MSLPushImage(): only clone attributes if not null,
- SVGStartElement(): reject impossibly small bounds and view_box width
or height.
-- Laszlo Boszormenyi (GCS) <email address hidden> Mon, 22 Feb 2021 06:54:42 +0100
Available diffs
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.36+hg16469-1) unstable; urgency=medium
* Mercurial snapshot:
- MagickDoubleToLong(): Guard against LONG_MAX not directly representable
as a double,
- handle Ghostscript point versions added after 9.52 .
* Make libgraphicsmagick1-dev depend on pkg-config (closes: #977699).
-- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 21 Feb 2021 08:24:57 +0100
Available diffs
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.36+hg16462-1) unstable; urgency=medium
* Mercurial snapshot:
- ExecuteModuleProcess(): add error reporting for the case that the
expected symbol is not resolved,
- AnalyzeImage(): add OpenMP speed-ups,
- TranslateTextEx(): fabricate default resolution values if the actual
resolution values are zero.
-- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 07 Feb 2021 15:04:57 +0100
Available diffs
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.36+hg16448-1) unstable; urgency=high
* Mercurial snapshot, fixing the following security issues:
- coders/tiff.c: remove unintended double-charging for memory resource,
- magick/pixel_cache.c: use resource limited memory allocator,
- InverseAffineMatrix(): avoid possible division by zero or absurdly
extreme scaling.
* Add upstream metadata.
* Update watch file.
* Update packaging bits.
[ Helmut Grohne <email address hidden> ]
* Reduce Build-Depends (closes: #980721):
+ Drop unused libexif-dev.
+ Annotate sharutils with <!nocheck> as uudecode is conditionally used in
d/rules.
+ Annotate gsfonts with <!nocheck> as it is only used in unit tests.
+ Drop unused transfig as d/rules passes --without-frozenpaths.
+ Drop unused libltdl-dev as d/rules passes --without-modules.
-- Laszlo Boszormenyi (GCS) <email address hidden> Sat, 23 Jan 2021 10:10:54 +0100
Available diffs
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.36+hg16442-1) unstable; urgency=high
* Mercurial snapshot, fixing the following security issues:
- super_fgets_w() and super_fgets(): assure that returned pointer
value is the same as reported via 'b',
- ReadIdentityImage(): don't lose exception info if an image is not
returned,
- ReadMETAImage(): fix double-free if blob buffer was reallocated after
being attached to blob,
- ReadGIFImage(): fix memory leak of global_colormap if realloc of memory
for comment fails.
* Fix broken reading of planar RGB files.
-- Laszlo Boszormenyi (GCS) <email address hidden> Fri, 08 Jan 2021 18:02:36 +0100
Available diffs
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.36-1) unstable; urgency=high
* New upstream release, fixing the following security issues:
- update almost all of the remaining coders to use the resource-limited
memory allocator,
- ReadMPCImage(): heap-buffer-overflow read,
- EdgeImage(): fix null pointer dereference if edge image failed to be
created,
- CompareImageCommand() and CompositeImageCommand(): fix memory leaks when
an input image failed to be read,
- fix several null pointer dereference if an image failed to be created,
- Classify(): remove variables from function global scope that don't need
outer scope,
- ReadMIFFImage() and ReadMPCImage(): arbitrarily limit the number of
header keywords to avoid DOS attempts.
-- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 27 Dec 2020 07:44:36 +0100
Available diffs
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.35+hg16404-1) unstable; urgency=medium
* Mercurial snapshot, fixing the following issue:
- ImportRLEPixels(): Change from C assertion to exception report.
-- Laszlo Boszormenyi (GCS) <email address hidden> Fri, 18 Dec 2020 20:18:42 +0100
Available diffs
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.35+hg16397-1) unstable; urgency=medium
* Mercurial snapshot, fixing the following issue:
- fix a regression with parsing MVG and SVG files which contain a "mask"
statement.
* Update debhelper level to 13 .
* Update Standards-Version to 4.5.1 .
-- Laszlo Boszormenyi (GCS) <email address hidden> Sat, 12 Dec 2020 20:44:16 +0100
Available diffs
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.35+hg16394-1) unstable; urgency=high
* Mercurial snapshot, fixing the following security issues:
- DrawImage(): Verify that affine scaling factors are not zero - fixing
divide-by-zero in InverseAffineMatrix() ,
- DrawPolygonPrimitive(): Thread error status check was at wrong scope,
resulting in code executing when it should have quit,
- DrawImage(): Use unique image attribute space for MVG symbols - fixing
stack-overflow in DrawImage() and integer-overflow in
DrawPolygonPrimitive() .
-- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 06 Dec 2020 10:37:34 +0100
Available diffs
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.35+hg16390-1) unstable; urgency=medium
* Mercurial snapshot, fixing the following security issues:
- DrawImage(): Reject pattern image with a dimension of zero,
- add private interfaces for allocating memory while respecting resource
limits and use them in MVG rendering and MIFF reader code,
- WriteMIFFImage(): Update to use resource-limit respecting memory
allocators,
- adjust test suite memory limit to 128/256/512MB for Q8/Q16/Q32 builds,
- ConvertPathToPolygon(): Fix memory leak upon memory reallocation
failure,
- ReadSVGImage(): Fix memory leak due to CDATA block, and some other
possible small leaks,
- WritePSImage(): Fix problem when writing PseudoClass mage with a
colormap larger than two entries as bilevel,
- DrawPolygonPrimitive(): Try to minimize the impact of too many threads
due to replicated data,
- ConvertPathToPolygon(): Make sure not to leak points from added Edge,
- DrawDashPolygon(): Place an aribrary limit on stroke dash polygon unit
maximum length,
- ConvertPathToPolygon(): Attempt to fix leak of 'points' on memory
allocation failure,
- BMP: Use resource-limited memory allocator,
- DIB: Use resource-limited memory allocator,
- FITS: Use resource-limited memory allocator,
- WriteJBIGImage(): Use resource-limited memory allocator,
- WEBP: Use resource-limited memory allocator,
- ReadGIFImage(): Use resource-limited memory allocator when reading the
comment extension,
- ReadOneJNGImage(): Fix issues related to invoking sub-decoders (which
may lead to unexpected behavior),
- MAT: Use resource-limited memory allocator.
* Update library symbols for this release.
-- Laszlo Boszormenyi (GCS) <email address hidden> Thu, 03 Dec 2020 21:22:54 +0100
Available diffs
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.35+hg16348-1) unstable; urgency=high
* Mercurial snapshot, fixing the following security issues:
- DrawPrimitive(): destroy composite_image since it may be a list, fixing
indirect memory leak in MagickMalloc() ,
- DrawPrimitive(): missing DestroyImageList() request if multiple-frames
were returned,
- ConstituteImage(): set image depth appropriately based on StorageType
and QuantumDepth.
-- Laszlo Boszormenyi (GCS) <email address hidden> Sat, 17 Oct 2020 07:49:58 +0200
Available diffs
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.35+hg16344-1) unstable; urgency=high
* Mercurial snapshot, fixing the following security issues:
- integer overflow in DrawImage() ,
- stack-overflow due to DrawImage() / DrawClipPath() recursion,
- fix UBSAN integer overflow warning in MagickXVisualColormapSize() ,
- ExtractTokensBetweenPushPop(): verify that the expected/required pop
statement is indeed found,
- DrawImage(): handle the case that ExtractTokensBetweenPushPop() can
return NULL,
- ReadTIFFImage(): apply the same resource limits to TIFF tile sizes as
apply to the image itself,
- GetImageBoundingBox(): MagickTrimImage() with extreme fuzz can produce
image with negative width,
- ReadTIFFImage(): ignore corrupt whitepoint and primary chromaticities
tags,
- ResizeImage(): if CloneImage() of resize_image to source_image fails
then free source_image allocation before returning in order to prevent
memory leak,
- CloneImage(): free clone_image allocation if ImgExtra allocation fails
in order to prevent memory leak.
* Remove unsafe quotes from mailcap entries.
-- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 11 Oct 2020 18:16:39 +0200
| Superseded in buster-release |
graphicsmagick (1.4+really1.3.35-1~deb10u1) buster-security; urgency=high * Security backport for Buster. * Relax Standards-Version to 4.3.0 . -- Laszlo Boszormenyi (GCS) <email address hidden> Sat, 18 Apr 2020 16:30:17 +0000
| Published in stretch-release |
graphicsmagick (1.3.30+hg15796-1~deb9u4) stretch-security; urgency=high
* Non-maintainer upload by the Security Team.
* Fix CVE-2019-12921: remote information disclosure (attacker can read
arbitrary files) via a crafted image; fix is to remove support for reading
from a file using '@filename' syntax
* Fix CVE-2020-10938: Fix signed overflow on range check in
HuffmanDecodeImage function which leads to heap overflow in 32-bit
applications.
-- Roberto C. Sanchez <email address hidden> Tue, 14 Apr 2020 21:51:48 -0400
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.35+hg16297-1) unstable; urgency=high
* Mercurial snapshot, fixing the following security issues:
- fix WPG heap-buffer-overflow in ImportGrayQuantumType(),
- fix WPG heap-buffer-overflow in InsertRow(),
- fix WPG thrown assertion due to a double-free of memory.
-- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 07 Jun 2020 21:02:16 +0200
Available diffs
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.35+hg16296-1) unstable; urgency=high
* Mercurial snapshot, fixing the following security issues:
- ReadWPGImage(): Terminate reading when a pixel cache resource limit is
hit rather than moving on to heap buffer overflow,
- WriteTIFFImage(): WebP compression only supports a depth of 8; fixes
use-of-uninitialized-value in GammaToLinear.
* Update library symbols for this release.
-- Laszlo Boszormenyi (GCS) <email address hidden> Wed, 03 Jun 2020 17:49:58 +0200
Available diffs
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.35-2) unstable; urgency=high
* Backport security fix for CVE-2020-12672, MNG: small heap overwrite or
assertion if magnifying and image to be magnified has rows or columns == 1
(closes: #960000).
-- Laszlo Boszormenyi (GCS) <email address hidden> Sat, 30 May 2020 17:41:09 +0200
| Superseded in buster-release |
graphicsmagick (1.4~hg15978-1+deb10u1) unstable; urgency=medium
* Non-maintainer upload by the LTS Team.
* CVE-2019-19953
heap-based buffer over-read in the function EncodeImage
* CVE-2019-19951
heap-based buffer overflow in the function ImportRLEPixels
* CVE-2019-19950
use-after-free in ThrowException and ThrowLoggedException
-- Thorsten Alteholz <email address hidden> Wed, 29 Jan 2020 19:03:02 +0100
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.35-1) unstable; urgency=high
* New upstream release, fixing the following security issues among others:
- ReadSVGImage(): Fix dereference of NULL pointer when stopping image
timer,
- DrawImage(): Fix integer-overflow in DrawPolygonPrimitive() .
* Update library symbols for this release.
[ Nicolas Boulenguez <email address hidden> ]
* mime: improve formatting.
* mime: adjust priority for all images (closes: #951758).
-- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 23 Feb 2020 20:42:10 +0000
Available diffs
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.34+hg16230-1) unstable; urgency=medium
* Mercurial snapshot, fixing the following security issues:
- WritePICTImage(): Eliminating small buffer overrun when run-length
encoding pixels,
- WriteOneJNGImage(): Detect when JPEG encoder has failed, and throw
exception,
- DecodeImage(): Fix heap buffer over-reads,
- DecodeImage(): Allocate extra scanline memory to allow small
RLE overrun.
* Update library symbols for this release.
* Update Standards-Version to 4.5.0 .
-- Laszlo Boszormenyi (GCS) <email address hidden> Fri, 07 Feb 2020 19:02:36 +0000
Available diffs
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.34+hg16181-1) unstable; urgency=medium
* Mercurial snapshot, fixing the following security issue:
- WritePCXImage(): Fix heap overflow in PCX writer when bytes per line
value overflows its 16-bit storage unit.
* Fix definition of ResourceInfinity.
[ Nicolas Boulenguez <email address hidden> ]
* Lower MIME priority for PS/PDF (closes: #935099).
-- Laszlo Boszormenyi (GCS) <email address hidden> Sat, 28 Dec 2019 18:58:57 +0000
Available diffs
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.34-2) unstable; urgency=medium * Still use glibc malloc allocator. -- Laszlo Boszormenyi (GCS) <email address hidden> Wed, 25 Dec 2019 10:09:02 +0000
Available diffs
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.34-1) unstable; urgency=high
* New upstream release, fixing the following security issues among others:
- PNMInteger(): Place a generous arbitrary limit on the amount of PNM
comment text to avoid DoS opportunity,
- MagickClearException(): Destroy any existing exception info before
re-initializing the exception info or else there will be a memory leak,
- HuffmanDecodeImage(): Fix signed overflow on range check which leads
to heap overflow,
- ReadMNGImage(): Only magnify the image if the requested magnification
methods are supported,
- GenerateEXIFAttribute(): Add validations to prevent heap buffer
overflow,
- DrawPatternPath(): Don't leak memory if fill_pattern or stroke_pattern
of cloned draw_info are not null,
- CVE-2019-19953: PICT: Throw a writer exception if the PICT width limit
is exceeded (closes: #947311).
* Build with Google Thread-Caching Malloc library.
* Update Standards-Version to 4.4.1 .
-- Laszlo Boszormenyi (GCS) <email address hidden> Tue, 24 Dec 2019 20:23:10 +0000
Available diffs
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.33+hg16117-1) unstable; urgency=high
* Mercurial snapshot, fixing the following security issue:
- CVE-2019-16709: ReadDPSImage(): Fix memory leak when OpenBlob()
reports failure.
-- Laszlo Boszormenyi (GCS) <email address hidden> Thu, 10 Oct 2019 22:57:35 +0000
Available diffs
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.33+hg16115-1) unstable; urgency=high
* Mercurial snapshot, fixing the following security issues:
- ReadMNGImage(): skip coalescing layers if there is only one layer,
- DrawStrokePolygon(): handle case where TraceStrokePolygon() returns
NULL,
- DrawDashPolygon(): handle case where DrawStrokePolygon() returns
MagickFail,
- TraceBezier(): detect arithmetic overflow and return errors via
normal error path rather than exiting,
- ExtractTokensBetweenPushPop(): fix non-terminal parsing loop,
- GenerateEXIFAttribute(): check that we are not being directed to read
an IFD that we are already parsing and quit in order to avoid a loop,
- ReallocColormap(): avoid dereferencing a NULL pointer if
image->colormap is NULL,
- png_read_raw_profile(): fix validation of raw profile length,
- TraceArcPath(): substitute a lineto command when tracing arc is
impossible,
- GenerateEXIFAttribute(): skip unsupported/invalid format 0.
-- Laszlo Boszormenyi (GCS) <email address hidden> Sat, 28 Sep 2019 10:57:12 +0000
Available diffs
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.33-1) unstable; urgency=medium * New upstream release, including many security fixes. -- Laszlo Boszormenyi (GCS) <email address hidden> Thu, 25 Jul 2019 16:43:39 +0000
Available diffs
| Superseded in sid-release |
graphicsmagick (1.4+really1.3.32-1) unstable; urgency=high
* New upstream release, fixing the following security issues among others:
- DrawImage(): Terminate drawing if DrawCompositeMask() reports failure,
- DrawImage(): Detect an error in TracePath() and quit rather than
forging on.
* Backport security fixes:
- ReadTIFFImage(): Fix typo in initialization of 'tile' pointer variable,
- WriteDIBImage(): Detect arithmetic overflow of image_size,
- WriteBMPImage(): Detect arithmetic overflow of image_size,
- WriteBMPImage(): Assure that chromaticity uses double-precision for
multiply before casting to unsigned integer.
-- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 16 Jun 2019 18:10:05 +0000
Available diffs
- diff from 1.4~hg16039-1 to 1.4+really1.3.32-1 (440.6 KiB)
| Superseded in sid-release |
graphicsmagick (1.4~hg16039-1) unstable; urgency=high
* Mercurial snapshot, fixing the following security issues:
- ImportRLEPixels(): Fix heap overflow caused by a typo in the code. Also
fix undefined behavior caused by large left shifts of an unsigned char,
- ThrowException(), ThrowLoggedException(): Handle the case where some
passed character strings refer to existing exception character strings,
- PICT: Allocate output buffer used by ExpandBuffer() on DecodeImage()
stack,
- WritePDFImage(): Allocate working buffer on stack and pass as argument
to EscapeParenthesis() to eliminate a thread safety problem,
- TranslateTextEx(): Remove support for reading from a file using
'@filename' syntax,
- DrawImage(): Only support '@filename' syntax to read drawing primitive
from a file if we are not already drawing.
* Update library symbols for this release.
-- Laszlo Boszormenyi (GCS) <email address hidden> Thu, 06 Jun 2019 21:11:11 +0000
Available diffs
- diff from 1.4~hg15978-1 to 1.4~hg16039-1 (209.1 KiB)
graphicsmagick (1.4~hg15978-1) unstable; urgency=medium * Mercurial snapshot, fixing uninitialized integer value of log_configured. -- Laszlo Boszormenyi (GCS) <email address hidden> Sat, 27 Apr 2019 07:06:40 +0000
Available diffs
- diff from 1.4~hg15968-1 to 1.4~hg15978-1 (77.0 KiB)
- diff from 1.4~hg15976-1 to 1.4~hg15978-1 (1.8 KiB)
graphicsmagick (1.4~hg15976-1) unstable; urgency=high
* Mercurial snapshot, fixing the following security issues:
- ReadXWDImage(): Potential for heap overflow; Address header-directed
arbitrary memory allocation,
- ReadXWDImage(): Address segmentation violation and invalid memory
reads with more validations,
- Make built-in color tables fully const.
* Break gnudatalanguage versions that doesn't initialize GraphicsMagick
library (closes: #927688).
* Update library symbols for this release.
-- Laszlo Boszormenyi (GCS) <email address hidden> Mon, 22 Apr 2019 14:41:32 +0000
Available diffs
- diff from 1.4~hg15968-1 to 1.4~hg15976-1 (76.4 KiB)
| Superseded in sid-release |
graphicsmagick (1.4~hg15968-1) unstable; urgency=high
* Mercurial snapshot, fixing the following security issues
(closes: #927029):
- ReadMATImage(): Report a corrupt image exception if reader encounters
end of file while reading scanlines (use of uninitialized value in
IsGrayImag() ),
- ReadTOPOLImage(): Report a corrupt image if reader encounters end of
file while reading header rows (use of uninitialized value in
InsertRow() ),
- OpenCache(): Use unsigned 64-bit value to store CacheInfo offset and
length as well as for the total pixels calculation to prevent some more
arithmetic overflows,
- SetNexus(): Apply resource limits to pixel nexus allocations to prevent
arithmetic and integer overflows,
- SetNexus(): Report error for empty region rather than crashing due to
divide by zero exception,
- ReadTXTImage(): Don't start new line if x_max < x_min to avoid floating
point exception in SetNexus(),
- ReadMATImage(): Quit if image scanlines are not fully populated due to
exception to prevent use of uninitialized value in
InsertComplexFloatRow(),
- ReadMATImage(): Fix memory leak on unexpected end of file,
- Throwing an exception is now thread-safe,
- Fx module error handling/reporting improvements,
- Fix various uses of allocated memory without checking if memory
allocation has failed,
- CVE-2019-11010: ReadMPCImage(): Deal with a profile length of zero, or
an irrationally large profile length to prevent memory leak,
- CVE-2019-11007: ReadMNGImage(): Fix small buffer overflow (one
PixelPacket) of image colormap,
- CVE-2019-11009: ReadXWDImage(): Fix heap buffer overflow while reading
DirectClass XWD file,
- CVE-2019-11006: ReadMIFFImage(): Detect end of file while reading RLE
packets to prevent heap buffer overflow,
- CVE-2019-11005: SVGStartElement(): Fix stack buffer overflow while
parsing quoted font family value,
- CVE-2019-11008: XWD: Perform more header validations, a file size
validation, and fix arithmetic overflows leading to heap overwrite,
- ReadWMFImage(): Reject WMF files with an empty bounding box to prevent
division by zero problems,
- WritePDBImage(): Use correct bits/sample rather than image->depth to
prevent potential buffer overflow,
- WriteMATLABImage(): Add completely missing error handling to prevent
heap buffer overflow,
- SetNexus(): Fix arithmetic overflow while testing x/y offset limits,
- DrawPrimitive(): Check primitive point x/y values for NaN to prevent
integer overflow,
- DrawImage(): Fix integer overflow while validating gradient dimensions,
- WritePDBImage(): Assure that input scanline is cleared in order to
cover up some decoder bug to prevent use of uninitialized value,
- ReadXWDImage(): Add more validation logic to avoid crashes due to FPE
and invalid reads.
* Update library symbols for this release.
-- Laszlo Boszormenyi (GCS) <email address hidden> Mon, 15 Apr 2019 17:40:12 +0000
Available diffs
- diff from 1.4~hg15916-2 to 1.4~hg15968-1 (258.9 KiB)
graphicsmagick (1.4~hg15916-2) unstable; urgency=medium
* Declare break on python{,3}-pgmagick versions compiled with GCC 7
compiled versions of GraphicsMagick (closes: #915603, #915606).
-- Laszlo Boszormenyi (GCS) <email address hidden> Tue, 02 Apr 2019 18:49:40 +0000
Available diffs
- diff from 1.4~hg15916-1 to 1.4~hg15916-2 (945 bytes)
graphicsmagick (1.4~hg15916-1) unstable; urgency=high
* Mercurial snapshot, fixing the following security issues:
- ReadTIFFImage(): Only disassociate alpha channel for images where
photometic is PHOTOMETRIC_RGB,
- DrawDashPolygon(): Heap buffer overflow when parsing SVG images,
- DrawPrimitive(): Add arithmetic overflow checks when converting
computed coordinates from 'double' to 'long',
- DrawImage(): Don't destroy draw_info in graphic_context when draw_info
has not been allocated yet,
- RenderFreetype(): Eliminate memory leak of GlyphInfo.image,
- DrawDashPolygon(): Heap-buffer-overflow via read beyond end of dash
pattern array,
- ReadMIFFImage(): Tally directory length to avoid death by strlen(),
- ReadMPCImage(): Tally directory length to avoid death by strlen(),
- ReallocColormap(): Make sure that there is not a heap overwrite if the
number of colors has been reduced.
* Update library symbols for this release.
-- Laszlo Boszormenyi (GCS) <email address hidden> Thu, 28 Feb 2019 17:50:19 +0000
Available diffs
- diff from 1.4~hg15896-1 to 1.4~hg15916-1 (21.2 KiB)
graphicsmagick (1.4~hg15896-1) unstable; urgency=high
* Mercurial snapshot, fixing the following security issues:
- ReadMNGImage(): Quit processing and report error upon failure to insert
MNG background layer preventing out of memory issues,
- ReadMIFFImage(): Improve pixel buffer calculations to defend against
overflow,
- ReadTIFFImage(): Make sure that image is in DirectClass mode and ignore
any claimed colormap when the image is read using various functions,
- ReadWPGImage(): Assure that all colormap entries are initialized,
- DecodeImage(): Avoid a one-byte over-read of pixels heap allocation,
- ReadTIFFImage(): Assure that opacity channel is initialized in the
RGBAStrippedMethod case,
- ReadMNGImage(): Bound maximum loop iterations by subrange as a
primitive means of limiting resource consumption preventing out of
memory issues,
- CVE-2019-7397: WritePDFImage(): Make sure to free 'xref' before
returning preventing several memory leaks,
- ReadTIFFImage(): For planar TIFF, make sure that pixels are initialized
in case some planes are missing.
-- Laszlo Boszormenyi (GCS) <email address hidden> Sat, 16 Feb 2019 15:19:56 +0000
Available diffs
- diff from 1.4~hg15880-1 to 1.4~hg15896-1 (13.7 KiB)
graphicsmagick (1.4~hg15880-1) unstable; urgency=high
* Mercurial snapshot, fixing the following security issues:
- SetNexus(): Merge IsNexusInCore() implementation code into SetNexus()
and add check for if cache_info->pixels is null,
- CVE-2018-20185: BMP and DIB: Improve buffer size calculations to guard
against arithmetic overflow.
* Update Standards-Version to 4.3.0 .
-- Laszlo Boszormenyi (GCS) <email address hidden> Tue, 05 Feb 2019 20:44:14 +0000
Available diffs
- diff from 1.4~hg15873-1 to 1.4~hg15880-1 (206.4 KiB)
graphicsmagick (1.4~hg15873-1) unstable; urgency=high
* Mercurial snapshot, fixing the following security issues:
- WriteImage(): Eliminate use of just-freed memory in clone_info->magick,
- ReadMIFFImage(): Fix memory leak of profiles 'name' when claimed length
is zero,
- WriteXPMImage(): Assure that added colormap entry for transparent XPM
is initialized,
- ReadMNGImage(): Fix non-terminal MNG looping,
- ReadMIFFImage(): Sanitize claimed profile size before allocating memory
for it,
- CVE-2018-20185: ReadBMPImage(): Fix heap overflow in 32-bit build due
to arithmetic overflow (closes: #916719),
- CVE-2018-20184: WriteTGAImage(): Image rows/columns must not be larger
than 65535 (closes: #916721),
- ReadTIFFImage(): More validations and stricter error reporting,
- ReadMIFFImage(): Detect and reject zero-length deflate-encoded row in
MIFF version 0,
- CVE-2018-20189: ReadDIBImage(): DIB images claiming more than 8-bits
per pixel are not colormapped (closes: #916752).
* Add pkg-config to build dependency for FreeType 2.9.1+ detection.
* Update library symbols for this release.
-- Laszlo Boszormenyi (GCS) <email address hidden> Thu, 20 Dec 2018 19:04:33 +0000
Available diffs
- diff from 1.3.31-1 to 1.4~hg15873-1 (456.8 KiB)
graphicsmagick (1.3.31-1) unstable; urgency=high
* New upstream release.
* Fix CVE-2018-18544: memory leak of msl_image if OpenBlob() fails in
ProcessMSLScript() .
* Can detect FreeType via pkg-config (closes: #887720).
* Enable Zstandard, the fast lossless compression algorithm support.
* Update library symbols for this release.
* Update Standards-Version to 4.2.1 .
-- Laszlo Boszormenyi (GCS) <email address hidden> Tue, 20 Nov 2018 17:16:37 +0000
Available diffs
| Superseded in stretch-release |
graphicsmagick (1.3.30+hg15796-1~deb9u2) stretch-security; urgency=medium * Backport fix for case-insensitive static module loader (closes: #911386). -- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 21 Oct 2018 17:36:20 -0400
graphicsmagick (1.3.30+hg15796-1) unstable; urgency=high
* Mercurial snapshot, fixing the following security issues:
- WEBP: Fix compiler warnings regarding uninitialized structure members,
- ReadJPEGImage(): Allow libjpeg to use 1/5th of the total memory limit,
- ReadJPEGImage(): Make sure that JPEG pixels array is initialized in
case libjpeg fails to completely initialize it,
- WriteOnePNGImage(): Free png_pixels as soon as possible,
- ReadMIFFImage(): Detect EOF when reading using ReadBlobZC() and avoid
subsequent heap read overflow,
- ReadMVGImage(): Don't assume that in-memory MVG blob is a
null-terminated C string,
- ReadMVGImage(): Don't allow MVG files to side-load a file as the
drawing primitive using '@' syntax,
- FileToBlob(): Use confirm access APIs to verify that read access is
allowed, and verify that file is a regular file,
- ExtractTokensBetweenPushPop() needs to always return a valid pointer
into the primitive string,
- DrawPolygonPrimitive(): Fix leak of polygon set when object is
completely outside image,
- SetNexus(): For requests one pixel tall, SetNexus() was wrongly using
pixels in-core rather than using a staging area for the case where the
nexus rows extend beyond the image raster boundary,
- ReadCINEONImage(): Quit immediately on EOF and detect short files,
- ReadMVGImage(): Fix memory leak,
- Add mechanism to approve embedded subformats in WPG,
- ReadXBMImage(): Add validations for row and column dimensions,
- MAT InsertComplexFloatRow(): Avoid signed overflow,
- InsertComplexFloatRow(): Try not to lose the previous intention while
avoiding signed overflow,
- XBMInteger(): Limit the number of hex digits parsed to avoid signed
integer overflow,
- MAT: More aggresive data corruption checking,
- MAT: Correctly check GetBlobSize(image) even for zipstreams inside
blob,
- MAT: Explicitly reject non-seekable streams,
- DrawImage(): Add missing error-reporting logic to return immediately
upon memory reallocation failure. Apply memory resource limits to
PrimitiveInfo array allocation,
- MagickAtoFChk(): Add additional validation checks for floating point
values. NAN and +/- INFINITY values also map to 0.0 ,
- ReadMPCImage()/(ReadMIFFImage(): Insist that the format be identified
prior to any comment, and that there is only one comment,
- ConvertPrimitiveToPath(): Enlarge PathInfo array allocation to avoid
possible heap write overflow,
- WPG: Fix intentional 64 bit file offset overflow,
- DrawImage(): Be more precise about error detection and reporting,
- TranslateTextEx(): Fix off-by-one in loop bounds check which allowed a
one-byte stack write overflow,
- DrawImage(): Fix excessive memory consumption due to
SetImageAttribute() appending values,
- QuantumTransferMode(): CIE Log images with an alpha channel are not
supported,
- ConvertPrimitiveToPath(): Second attempt to prevent heap write
overflow of PathInfo array,
- ExtractTileJPG(): Enforce that JPEG tiles are read by the JPEG coder,
- MIFF and MPC, need to avoid leaking value allocation (day-old bug),
- ReadSFWImage(): Enforce that file is read using the JPEG reader,
- FindEXIFAttribute()/GenerateEXIFAttribute(): Change size types from
signed to unsigned and check for unsigned overflow,
- GenerateEXIFAttribute(): Eliminate undefined shift,
- TraceEllipse(): Detect arithmetic overflow when computing the number of
points to allocate for an ellipse,
- ReadMNGImage(): mng_LOOP chunk must be at least 5 bytes long,
- ReadJPEGImage(): Apply a default limit of 100 progressive scans before
the reader quits with an error.
* Update library symbols for this release.
-- Laszlo Boszormenyi (GCS) <email address hidden> Mon, 24 Sep 2018 21:54:36 +0000
Available diffs
- diff from 1.3.30-1 to 1.3.30+hg15796-1 (18.0 MiB)
graphicsmagick (1.3.30-1) unstable; urgency=high * New upstream release, including many security fixes. * Build with all hardening enabled. -- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 24 Jun 2018 08:20:31 +0000
Available diffs
- diff from 1.3.28-2 to 1.3.30-1 (355.4 KiB)
- diff from 1.3.29+hg15665-1 to 1.3.30-1 (18.0 MiB)
| Published in jessie-release |
graphicsmagick (1.3.20-3+deb8u2) jessie-security; urgency=high
* Fix CVE-2015-8808: denial of service (uninitialized memory access) via
a crafted GIF file.
* Fix CVE-2016-2317: segmentation violation when reading SVG files
(closes: #814732).
* Fix CVE-2016-2318: make SVG path and other primitive parsing more robust.
* Fix CVE-2016-5240: endless loop problem caused by negative
stroke-dasharray arguments.
* Fix CVE-2016-3714: remove delegates support for Gnuplot files.
* Fix CVE-2016-3715: remove undocumented "TMP" magick prefix.
* Fix CVE-2016-5118: remove support for reading input from a shell command,
or writing output to a shell command (closes: #825800).
* Fix CVE-2016-7996: possible heap overflow of colormap in Q8 build.
* Fix CVE-2016-7997: correctly flip image->blob and rotated_image->blob.
* Fix CVE-2016-8682: stack-based buffer overflow in ReadSCTImage (sct.c).
* Fix CVE-2016-8684: memory allocation failure in MagickMalloc (memory.c).
* Fix CVE-2016-8683: memory allocation failure in ReadPCXImage (pcx.c).
* Fix CVE-2016-7800: unsigned underflow leading to heap overflow when
parsing 8BIM chunk.
* Fix CVE-2016-9830: memory allocation failure in MagickRealloc
(closes: #847055).
* Add new MagickGetToken@Base symbol to libgraphicsmagick3.
-- Laszlo Boszormenyi (GCS) <email address hidden> Wed, 05 Oct 2016 17:24:05 +0000
graphicsmagick (1.3.29+hg15665-1) unstable; urgency=high
* Mercurial snapshot, fixing the following security issues:
- use of uninitialized value in IsMonochromeImage() ,
- divide by zero in GetPixelOpacity() ,
- write beyond array bounds in TraceStrokePolygon() ,
- use of uninitialized value in format8BIM() ,
- assertion failure in WriteBlob() ,
- out of bounds write in TraceEllipse() ,
- memory leak and use of uninitialized memory when handling eXIf chunk
in png_malloc() ,
- floating point exception in WriteTIFFImage() ,
- leak of Image when TIFFReadRGBAImage() reports failure,
- potentional leak when compressed object is corrupted,
- floating point exception in WriteTIFFImage() ,
- heap double free in Magick::BlobRef::~BlobRef() ,
- direct leak in TIFFClientOpen() ,
- indirect leak in CloneImage() ,
- direct leak in ReadOneJNGImage() ,
- heap buffer overflow in put1bitbwtile() ,
- use of uninitialized value in SyncImageCallBack() ,
- validate tile memory requests for TIFFReadRGBATile() .
* Remove profiles/sRGB Color Space Profile.ICM and
jp2/data/colorprofiles/srgb.icm for being non-free.
* Remove zlib/contrib/dotzlib/DotZLib.chm for no source available.
-- Laszlo Boszormenyi (GCS) <email address hidden> Fri, 25 May 2018 19:21:07 +0000
Available diffs
- diff from 1.3.29-1 to 1.3.29+hg15665-1 (18.0 MiB)
graphicsmagick (1.3.29-1) unstable; urgency=high * New upstream release, including many security fixes. * Remove previously backported security patches. * Update library symbols for this release. * Update debhelper level to 11 . * Update Standards-Version to 4.1.4 . -- Laszlo Boszormenyi (GCS) <email address hidden> Tue, 08 May 2018 20:33:46 +0000
graphicsmagick (1.3.28-2) unstable; urgency=high
* Backport security fixes:
- don't use rescale map if it was not allocated,
- validate number of colormap bits to avoid undefined shift behavior,
- defend against partial scanf() expression matching, resulting in benign
use of uninitialized data,
- don't use rescale map if it was not allocated,
- fix tile index overflow,
- reject XPM if it contains non-whitespace control characters,
- fix forged amount of frames 6755,
- validate header length and offset properties,
- fixed memory leak when tile overflows,
- fix forged amount of frames 7076,
- check for forged image that overflows file size,
- validate size request prior to allocation,
- validate that file size is sufficient for claimed image properties,
- fix signed integer overflow when computing pixels size,
- include number of FITS scenes in file size validations,
- allocate space for null termination and null terminate string,
- validate that samples per pixel is in valid range,
- check whether datablock is really read,
- verify that sufficient backing data exists before allocating memory to
read it,
- duplicate image check for data with fixed geometry,
- CVE-2018-9018: avoid divide-by-zero if delay or timeout properties
changed while ticks_per_second is zero (closes: #894396),
- add checks for EOF,
- validate that PICT rectangles do not have zero dimensions,
- check image pixel limits before allocating memory for tile.
* Backport patch to redesign ReadBlobDwordLSB() to be more effective.
* Backport patch to destroy tile_image in ThrowPICTReaderException() macro
to simplify logic.
* Backport patch to remove shadowed tile_image variable which defeats new
ThrowPICTReaderException() implementation.
-- Laszlo Boszormenyi (GCS) <email address hidden> Sat, 31 Mar 2018 11:05:51 +0000
Available diffs
- diff from 1.3.28-1 to 1.3.28-2 (25.4 KiB)
graphicsmagick (1.3.28-1) unstable; urgency=high
* New upstream release, fixing the following security issues among others:
- BMP: Fix non-terminal loop due to unexpected bit-field mask value
(DOS opportunity),
- PALM: Fix heap buffer underflow in builds with QuantumDepth=8,
- SetNexus() Fix heap overwrite under certain conditions due to using a
wrong destination buffer,
- TIFF: Fix heap buffer read overflow in LocaleNCompare() when parsing
NEWS profile.
* Remove previously backported security patches.
-- Laszlo Boszormenyi (GCS) <email address hidden> Sat, 20 Jan 2018 20:19:29 +0000
Available diffs
- diff from 1.3.27-3 to 1.3.28-1 (115.6 KiB)
- diff from 1.3.27-4 to 1.3.28-1 (116.6 KiB)
graphicsmagick (1.3.27-4) unstable; urgency=high * Fix CVE-2018-5685: infinite loop in ReadBMPImage() (closes: #887158). * Fix memory leak of global colormap. * Fix memory leak of chunk and mng_info in error path. * Update Standards-Version to 4.1.3 . -- Laszlo Boszormenyi (GCS) <email address hidden> Mon, 15 Jan 2018 19:06:43 +0000
Available diffs
- diff from 1.3.27-3 to 1.3.27-4 (2.6 KiB)
graphicsmagick (1.3.27-3) unstable; urgency=high
* Fix heap-buffer-overflow on LocaleNCompare() .
* Add some assertions to verify that the image pointer provided by libwebp
is valid.
* Fix NULL pointer dereference in ReadMNGImage() .
* Fix CVE-2017-17913: stack-buffer-overflow in WriteWEBPImage() .
* Fix CVE-2017-17915: heap-buffer-overflow in ReadMNGImage() .
-- Laszlo Boszormenyi (GCS) <email address hidden> Wed, 27 Dec 2017 22:12:30 +0000
Available diffs
- diff from 1.3.27-2 to 1.3.27-3 (5.5 KiB)
graphicsmagick (1.3.27-2) unstable; urgency=high
* Fix CVE-2017-17782: heap-based buffer over-read in ReadOneJNGImage()
(closes: #884905).
* Fix CVE-2017-17783: buffer over-read in ReadPALMImage() (closes: #884904).
-- Laszlo Boszormenyi (GCS) <email address hidden> Mon, 25 Dec 2017 17:18:01 +0000
Available diffs
- diff from 1.3.27-1 to 1.3.27-2 (3.1 KiB)
graphicsmagick (1.3.27-1) unstable; urgency=medium * New upstream release. * Remove previously backported security patches. * Update library symbols for this release. * Add libwebp-dev dependency to libgraphicsmagick1-dev (closes: #863564). * Update Standards-Version to 4.1.2 . -- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 10 Dec 2017 17:12:28 +0000
Available diffs
- diff from 1.3.26-19 to 1.3.27-1 (530.2 KiB)
graphicsmagick (1.3.26-19) unstable; urgency=high
* Fix CVE-2017-16669: heap buffer overflow in AcquireCacheNexus()
(closes: #881391).
* Fix CVE-2017-13134: heap buffer overflow in SFWScan() (closes: #881524).
-- Laszlo Boszormenyi (GCS) <email address hidden> Sat, 11 Nov 2017 09:12:53 +0000
Available diffs
- diff from 1.3.26-16 to 1.3.26-19 (20.1 KiB)
- diff from 1.3.26-18 to 1.3.26-19 (17.5 KiB)
graphicsmagick (1.3.26-18) unstable; urgency=high
* Fix CVE-2017-16547: remote denial of service (negative strncpy and
application crash).
* Fix CVE-2017-16545: NULL pointer dereference (write) with malformed WPG
image.
-- Laszlo Boszormenyi (GCS) <email address hidden> Mon, 06 Nov 2017 17:02:07 +0000
Available diffs
- diff from 1.3.26-17 to 1.3.26-18 (1.9 KiB)
graphicsmagick (1.3.26-17) unstable; urgency=high
* Fix CVE-2017-16353: heap read overflow vulnerability in DescribeImage() .
* Fix CVE-2017-16352: heap-based buffer overflow vulnerability in
DescribeImage() .
-- Laszlo Boszormenyi (GCS) <email address hidden> Thu, 02 Nov 2017 05:57:25 +0000
Available diffs
graphicsmagick (1.3.26-16) unstable; urgency=high
* Fix CVE-2017-15930: NULL pointer dereference while transferring JPEG
scanlines (closes: #879999).
-- Laszlo Boszormenyi (GCS) <email address hidden> Sat, 28 Oct 2017 17:54:09 +0000
Available diffs
- diff from 1.3.26-15 to 1.3.26-16 (3.9 KiB)
| 1 → 75 of 136 results | First • Previous • Next • Last |
