Change log for graphicsmagick package in Debian
1 → 75 of 136 results | First • Previous • Next • Last |
Published in sid-release |
graphicsmagick (1.4+really1.3.43-1) unstable; urgency=high * New upstream release, including many security fixes. * Update library symbols for this release. -- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 24 Mar 2024 20:46:14 +0100
Superseded in sid-release |
graphicsmagick (1.4+really1.3.42-1.1) unstable; urgency=medium * Non-maintainer upload. * Rename libraries for 64-bit time_t transition. Closes: #1063117 -- Benjamin Drung <email address hidden> Fri, 01 Mar 2024 12:05:32 +0000
Available diffs
Deleted in experimental-release (Reason: None provided.) |
graphicsmagick (1.4+really1.3.42-1.1~exp1) experimental; urgency=medium * Non-maintainer upload. * Rename libraries for 64-bit time_t transition. -- Steve Langasek <email address hidden> Mon, 05 Feb 2024 07:26:50 +0000
Superseded in sid-release |
graphicsmagick (1.4+really1.3.42-1) unstable; urgency=high * New upstream release, including many security fixes. -- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 24 Sep 2023 16:35:56 +0200
Available diffs
Superseded in sid-release |
graphicsmagick (1.4+really1.3.41-1) unstable; urgency=medium * New upstream release. * Use binary-targets for Rules-Requires-Root (closes: #1011774). * Update Standards-Version to 4.6.2 . * Update library symbols for this release. -- Laszlo Boszormenyi (GCS) <email address hidden> Tue, 15 Aug 2023 17:33:11 +0200
Available diffs
graphicsmagick (1.4+really1.3.40-4) unstable; urgency=medium * Remove development ifdef from memory leak fix. -- Laszlo Boszormenyi (GCS) <email address hidden> Mon, 17 Apr 2023 19:17:10 +0200
Available diffs
Superseded in sid-release |
graphicsmagick (1.4+really1.3.40-3) unstable; urgency=high * Backport security fixes: - MIFF reader able to provide attribute data in way which results in a heap overflow, - SetImageAttribute(): eliminate memory leak when handling attribute with key "EXIF:Orientation". -- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 16 Apr 2023 14:21:32 +0200
Superseded in sid-release |
graphicsmagick (1.4+really1.3.40-2) unstable; urgency=medium * Don't force tiff dependency, let shlibs handle it (closes: #1029212). -- Laszlo Boszormenyi (GCS) <email address hidden> Thu, 19 Jan 2023 19:44:45 +0100
Available diffs
Superseded in sid-release |
graphicsmagick (1.4+really1.3.40-1) unstable; urgency=medium * New upstream release. * Update Standards-Version to 4.6.1 . -- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 15 Jan 2023 08:33:55 +0100
Available diffs
Superseded in sid-release |
graphicsmagick (1.4+really1.3.39-2) unstable; urgency=medium * Backport security fix WritePCXImage(): Fix heap overflow when writing more than 1023 scenes, and also eliminate use of uninitialized memory. -- Laszlo Boszormenyi (GCS) <email address hidden> Fri, 30 Dec 2022 23:25:30 +0100
Available diffs
Superseded in sid-release |
graphicsmagick (1.4+really1.3.39-1) unstable; urgency=medium * New upstream release. * Enable JPEG XL format support (closes: #1026220). * Migrate gsfonts dependencies to fonts-urw-base35 (closes: #1020373). -- Laszlo Boszormenyi (GCS) <email address hidden> Tue, 27 Dec 2022 08:32:14 +0100
Available diffs
Published in bullseye-release |
graphicsmagick (1.4+really1.3.36+hg16481-2+deb11u1) bullseye-security; urgency=medium * CVE-2022-1270 -- Moritz Muehlenhoff <email address hidden> Thu, 24 Nov 2022 21:50:54 +0100
Superseded in sid-release |
graphicsmagick (1.4+really1.3.38+hg16870-1) unstable; urgency=high * Mercurial snapshot, fixing several security issues. -- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 11 Dec 2022 07:59:31 +0100
Available diffs
Superseded in sid-release |
graphicsmagick (1.4+really1.3.38+hg16739-1) unstable; urgency=high * Mercurial snapshot, fixing the following security issue: - ReadSVGImage(): null pointer dereference by checking return from xmlCreatePushParserCtxt() . * Restore non-const Image::colorMapSize() since it caused an ABI change (closes: #1019158). -- Laszlo Boszormenyi (GCS) <email address hidden> Tue, 06 Sep 2022 18:30:49 +0200
Available diffs
Superseded in sid-release |
graphicsmagick (1.4+really1.3.38+hg16728-1) unstable; urgency=high * Mercurial snapshot, fixing the following security issues: - ThrowLoggedException(): dereference after NULL check, - ReadJP2Image(): division by float zero, - MagickXMakeMagnifyImage(): division by zero, - ScaleImage(): resource leak, - GetLocaleMessageFromTag(): out of bounds read, - DrawPrimitive(): out of bounds access, - ReadOnePNGImage(): use of uninitialized value, - ReadMNGImage(): heap use after free in CloseBlob(), - ReadMNGImage(): indirect leak, - ReadOnePNGImage(): indirect leak in MagickMallocCleared(). -- Laszlo Boszormenyi (GCS) <email address hidden> Thu, 11 Aug 2022 23:50:27 +0200
Superseded in sid-release |
graphicsmagick (1.4+really1.3.38-1) unstable; urgency=high * New upstream release, including many security fixes. * Update watch file. -- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 27 Mar 2022 09:47:45 +0200
Available diffs
Published in buster-release |
graphicsmagick (1.4+really1.3.35-1~deb10u2) buster; urgency=high [ Thorsten Alteholz <email address hidden> ] * CVE-2020-12672 Fix for a heap-based buffer overflow in ReadMNGImage() in coders/png.c. -- Laszlo Boszormenyi (GCS) <email address hidden> Fri, 31 Dec 2021 16:41:12 +0100
Superseded in sid-release |
graphicsmagick (1.4+really1.3.37+hg16670-1) unstable; urgency=medium * Mercurial snapshot: - ReadJPEGImage(): Store embedded profiles in image, even if in 'ping' mode (closes: #1006374). -- Laszlo Boszormenyi (GCS) <email address hidden> Sat, 26 Feb 2022 17:55:22 +0100
Superseded in sid-release |
graphicsmagick (1.4+really1.3.37+hg16662-1) unstable; urgency=medium * Mercurial snapshot, fixing the following security issues: - ReadMATImageV4(): change 'ldblk' to size_t and check related calculations for overflow and to avoid possible negative seek offsets, - ReadMATImage(): change 'ldblk' to size_t and check related calculations for overflow and to avoid possible negative seek offsets, - added a ReadResource limit via the MAGICK_LIMIT_READ environment variable on how many uncompressed file bytes may be read while decoding an input file, - DecodeImage(): assure that the claimed scanline length is within the bounds of the scanline allocation to avoid possible heap overflow, - ReadBlob(): fix EOF logic, an use-of-uninitialized-value in SyncImageCallBack, - ReadBlobStream(): fix EOF logic, an use-of-uninitialized-value in WritePNMImage. * Build with HEIF image format support. * Update library symbols for this release. -- Laszlo Boszormenyi (GCS) <email address hidden> Fri, 11 Feb 2022 18:39:16 +0100
Available diffs
Superseded in sid-release |
graphicsmagick (1.4+really1.3.37-1) unstable; urgency=high * New upstream release, including many security fixes. * Update library symbols for this release. [ Vagrant Cascadian <email address hidden> ] * Pass MVDelegate to configure for fixing reproducible builds on usrmerge systems (closes: #990084). -- Laszlo Boszormenyi (GCS) <email address hidden> Mon, 13 Dec 2021 17:50:54 +0100
Available diffs
graphicsmagick (1.4+really1.3.36+hg16481-2) unstable; urgency=medium * Backport fix for use appropriate memory deallocator for memory returned by StringToList() (closes: #991380). -- Laszlo Boszormenyi (GCS) <email address hidden> Sat, 24 Jul 2021 11:42:42 +0200
Available diffs
graphicsmagick (1.4+really1.3.36+hg16481-1) unstable; urgency=high * Mercurial snapshot, fixing the following security issues: - ProcessStyleClassDefs(): fix non-terminal loop caused by a self-referential list which results in huge memory usage, - MSLCDataBlock(): fix leak of value from xmlNewCDataBlock(), - ProcessStyleClassDefs(): fix memory leak upon malformed class name list, - ProcessStyleClassDefs(): fix non-terminal loop and huge memory allocation caused by self-referential list, - SVGReference(): fix memory leak when parser node is null, - MSLStartElement(): fix assertion in TranslateText() when there are no attributes available. -- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 28 Feb 2021 23:26:56 +0100
Available diffs
Superseded in sid-release |
graphicsmagick (1.4+really1.3.36+hg16472-1) unstable; urgency=high * Mercurial snapshot, fixing the following security issues: - ReadJP2Image(): validate that file header is a format we expect Jasper to decode, - MSLPushImage(): only clone attributes if not null, - SVGStartElement(): reject impossibly small bounds and view_box width or height. -- Laszlo Boszormenyi (GCS) <email address hidden> Mon, 22 Feb 2021 06:54:42 +0100
Available diffs
Superseded in sid-release |
graphicsmagick (1.4+really1.3.36+hg16469-1) unstable; urgency=medium * Mercurial snapshot: - MagickDoubleToLong(): Guard against LONG_MAX not directly representable as a double, - handle Ghostscript point versions added after 9.52 . * Make libgraphicsmagick1-dev depend on pkg-config (closes: #977699). -- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 21 Feb 2021 08:24:57 +0100
Available diffs
Superseded in sid-release |
graphicsmagick (1.4+really1.3.36+hg16462-1) unstable; urgency=medium * Mercurial snapshot: - ExecuteModuleProcess(): add error reporting for the case that the expected symbol is not resolved, - AnalyzeImage(): add OpenMP speed-ups, - TranslateTextEx(): fabricate default resolution values if the actual resolution values are zero. -- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 07 Feb 2021 15:04:57 +0100
Available diffs
Superseded in sid-release |
graphicsmagick (1.4+really1.3.36+hg16448-1) unstable; urgency=high * Mercurial snapshot, fixing the following security issues: - coders/tiff.c: remove unintended double-charging for memory resource, - magick/pixel_cache.c: use resource limited memory allocator, - InverseAffineMatrix(): avoid possible division by zero or absurdly extreme scaling. * Add upstream metadata. * Update watch file. * Update packaging bits. [ Helmut Grohne <email address hidden> ] * Reduce Build-Depends (closes: #980721): + Drop unused libexif-dev. + Annotate sharutils with <!nocheck> as uudecode is conditionally used in d/rules. + Annotate gsfonts with <!nocheck> as it is only used in unit tests. + Drop unused transfig as d/rules passes --without-frozenpaths. + Drop unused libltdl-dev as d/rules passes --without-modules. -- Laszlo Boszormenyi (GCS) <email address hidden> Sat, 23 Jan 2021 10:10:54 +0100
Available diffs
Superseded in sid-release |
graphicsmagick (1.4+really1.3.36+hg16442-1) unstable; urgency=high * Mercurial snapshot, fixing the following security issues: - super_fgets_w() and super_fgets(): assure that returned pointer value is the same as reported via 'b', - ReadIdentityImage(): don't lose exception info if an image is not returned, - ReadMETAImage(): fix double-free if blob buffer was reallocated after being attached to blob, - ReadGIFImage(): fix memory leak of global_colormap if realloc of memory for comment fails. * Fix broken reading of planar RGB files. -- Laszlo Boszormenyi (GCS) <email address hidden> Fri, 08 Jan 2021 18:02:36 +0100
Available diffs
Superseded in sid-release |
graphicsmagick (1.4+really1.3.36-1) unstable; urgency=high * New upstream release, fixing the following security issues: - update almost all of the remaining coders to use the resource-limited memory allocator, - ReadMPCImage(): heap-buffer-overflow read, - EdgeImage(): fix null pointer dereference if edge image failed to be created, - CompareImageCommand() and CompositeImageCommand(): fix memory leaks when an input image failed to be read, - fix several null pointer dereference if an image failed to be created, - Classify(): remove variables from function global scope that don't need outer scope, - ReadMIFFImage() and ReadMPCImage(): arbitrarily limit the number of header keywords to avoid DOS attempts. -- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 27 Dec 2020 07:44:36 +0100
Available diffs
Superseded in sid-release |
graphicsmagick (1.4+really1.3.35+hg16404-1) unstable; urgency=medium * Mercurial snapshot, fixing the following issue: - ImportRLEPixels(): Change from C assertion to exception report. -- Laszlo Boszormenyi (GCS) <email address hidden> Fri, 18 Dec 2020 20:18:42 +0100
Available diffs
Superseded in sid-release |
graphicsmagick (1.4+really1.3.35+hg16397-1) unstable; urgency=medium * Mercurial snapshot, fixing the following issue: - fix a regression with parsing MVG and SVG files which contain a "mask" statement. * Update debhelper level to 13 . * Update Standards-Version to 4.5.1 . -- Laszlo Boszormenyi (GCS) <email address hidden> Sat, 12 Dec 2020 20:44:16 +0100
Available diffs
Superseded in sid-release |
graphicsmagick (1.4+really1.3.35+hg16394-1) unstable; urgency=high * Mercurial snapshot, fixing the following security issues: - DrawImage(): Verify that affine scaling factors are not zero - fixing divide-by-zero in InverseAffineMatrix() , - DrawPolygonPrimitive(): Thread error status check was at wrong scope, resulting in code executing when it should have quit, - DrawImage(): Use unique image attribute space for MVG symbols - fixing stack-overflow in DrawImage() and integer-overflow in DrawPolygonPrimitive() . -- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 06 Dec 2020 10:37:34 +0100
Available diffs
Superseded in sid-release |
graphicsmagick (1.4+really1.3.35+hg16390-1) unstable; urgency=medium * Mercurial snapshot, fixing the following security issues: - DrawImage(): Reject pattern image with a dimension of zero, - add private interfaces for allocating memory while respecting resource limits and use them in MVG rendering and MIFF reader code, - WriteMIFFImage(): Update to use resource-limit respecting memory allocators, - adjust test suite memory limit to 128/256/512MB for Q8/Q16/Q32 builds, - ConvertPathToPolygon(): Fix memory leak upon memory reallocation failure, - ReadSVGImage(): Fix memory leak due to CDATA block, and some other possible small leaks, - WritePSImage(): Fix problem when writing PseudoClass mage with a colormap larger than two entries as bilevel, - DrawPolygonPrimitive(): Try to minimize the impact of too many threads due to replicated data, - ConvertPathToPolygon(): Make sure not to leak points from added Edge, - DrawDashPolygon(): Place an aribrary limit on stroke dash polygon unit maximum length, - ConvertPathToPolygon(): Attempt to fix leak of 'points' on memory allocation failure, - BMP: Use resource-limited memory allocator, - DIB: Use resource-limited memory allocator, - FITS: Use resource-limited memory allocator, - WriteJBIGImage(): Use resource-limited memory allocator, - WEBP: Use resource-limited memory allocator, - ReadGIFImage(): Use resource-limited memory allocator when reading the comment extension, - ReadOneJNGImage(): Fix issues related to invoking sub-decoders (which may lead to unexpected behavior), - MAT: Use resource-limited memory allocator. * Update library symbols for this release. -- Laszlo Boszormenyi (GCS) <email address hidden> Thu, 03 Dec 2020 21:22:54 +0100
Available diffs
Superseded in sid-release |
graphicsmagick (1.4+really1.3.35+hg16348-1) unstable; urgency=high * Mercurial snapshot, fixing the following security issues: - DrawPrimitive(): destroy composite_image since it may be a list, fixing indirect memory leak in MagickMalloc() , - DrawPrimitive(): missing DestroyImageList() request if multiple-frames were returned, - ConstituteImage(): set image depth appropriately based on StorageType and QuantumDepth. -- Laszlo Boszormenyi (GCS) <email address hidden> Sat, 17 Oct 2020 07:49:58 +0200
Available diffs
Superseded in sid-release |
graphicsmagick (1.4+really1.3.35+hg16344-1) unstable; urgency=high * Mercurial snapshot, fixing the following security issues: - integer overflow in DrawImage() , - stack-overflow due to DrawImage() / DrawClipPath() recursion, - fix UBSAN integer overflow warning in MagickXVisualColormapSize() , - ExtractTokensBetweenPushPop(): verify that the expected/required pop statement is indeed found, - DrawImage(): handle the case that ExtractTokensBetweenPushPop() can return NULL, - ReadTIFFImage(): apply the same resource limits to TIFF tile sizes as apply to the image itself, - GetImageBoundingBox(): MagickTrimImage() with extreme fuzz can produce image with negative width, - ReadTIFFImage(): ignore corrupt whitepoint and primary chromaticities tags, - ResizeImage(): if CloneImage() of resize_image to source_image fails then free source_image allocation before returning in order to prevent memory leak, - CloneImage(): free clone_image allocation if ImgExtra allocation fails in order to prevent memory leak. * Remove unsafe quotes from mailcap entries. -- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 11 Oct 2020 18:16:39 +0200
Superseded in buster-release |
graphicsmagick (1.4+really1.3.35-1~deb10u1) buster-security; urgency=high * Security backport for Buster. * Relax Standards-Version to 4.3.0 . -- Laszlo Boszormenyi (GCS) <email address hidden> Sat, 18 Apr 2020 16:30:17 +0000
Published in stretch-release |
graphicsmagick (1.3.30+hg15796-1~deb9u4) stretch-security; urgency=high * Non-maintainer upload by the Security Team. * Fix CVE-2019-12921: remote information disclosure (attacker can read arbitrary files) via a crafted image; fix is to remove support for reading from a file using '@filename' syntax * Fix CVE-2020-10938: Fix signed overflow on range check in HuffmanDecodeImage function which leads to heap overflow in 32-bit applications. -- Roberto C. Sanchez <email address hidden> Tue, 14 Apr 2020 21:51:48 -0400
Superseded in sid-release |
graphicsmagick (1.4+really1.3.35+hg16297-1) unstable; urgency=high * Mercurial snapshot, fixing the following security issues: - fix WPG heap-buffer-overflow in ImportGrayQuantumType(), - fix WPG heap-buffer-overflow in InsertRow(), - fix WPG thrown assertion due to a double-free of memory. -- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 07 Jun 2020 21:02:16 +0200
Available diffs
Superseded in sid-release |
graphicsmagick (1.4+really1.3.35+hg16296-1) unstable; urgency=high * Mercurial snapshot, fixing the following security issues: - ReadWPGImage(): Terminate reading when a pixel cache resource limit is hit rather than moving on to heap buffer overflow, - WriteTIFFImage(): WebP compression only supports a depth of 8; fixes use-of-uninitialized-value in GammaToLinear. * Update library symbols for this release. -- Laszlo Boszormenyi (GCS) <email address hidden> Wed, 03 Jun 2020 17:49:58 +0200
Available diffs
Superseded in sid-release |
graphicsmagick (1.4+really1.3.35-2) unstable; urgency=high * Backport security fix for CVE-2020-12672, MNG: small heap overwrite or assertion if magnifying and image to be magnified has rows or columns == 1 (closes: #960000). -- Laszlo Boszormenyi (GCS) <email address hidden> Sat, 30 May 2020 17:41:09 +0200
Superseded in buster-release |
graphicsmagick (1.4~hg15978-1+deb10u1) unstable; urgency=medium * Non-maintainer upload by the LTS Team. * CVE-2019-19953 heap-based buffer over-read in the function EncodeImage * CVE-2019-19951 heap-based buffer overflow in the function ImportRLEPixels * CVE-2019-19950 use-after-free in ThrowException and ThrowLoggedException -- Thorsten Alteholz <email address hidden> Wed, 29 Jan 2020 19:03:02 +0100
Superseded in sid-release |
graphicsmagick (1.4+really1.3.35-1) unstable; urgency=high * New upstream release, fixing the following security issues among others: - ReadSVGImage(): Fix dereference of NULL pointer when stopping image timer, - DrawImage(): Fix integer-overflow in DrawPolygonPrimitive() . * Update library symbols for this release. [ Nicolas Boulenguez <email address hidden> ] * mime: improve formatting. * mime: adjust priority for all images (closes: #951758). -- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 23 Feb 2020 20:42:10 +0000
Available diffs
Superseded in sid-release |
graphicsmagick (1.4+really1.3.34+hg16230-1) unstable; urgency=medium * Mercurial snapshot, fixing the following security issues: - WritePICTImage(): Eliminating small buffer overrun when run-length encoding pixels, - WriteOneJNGImage(): Detect when JPEG encoder has failed, and throw exception, - DecodeImage(): Fix heap buffer over-reads, - DecodeImage(): Allocate extra scanline memory to allow small RLE overrun. * Update library symbols for this release. * Update Standards-Version to 4.5.0 . -- Laszlo Boszormenyi (GCS) <email address hidden> Fri, 07 Feb 2020 19:02:36 +0000
Available diffs
Superseded in sid-release |
graphicsmagick (1.4+really1.3.34+hg16181-1) unstable; urgency=medium * Mercurial snapshot, fixing the following security issue: - WritePCXImage(): Fix heap overflow in PCX writer when bytes per line value overflows its 16-bit storage unit. * Fix definition of ResourceInfinity. [ Nicolas Boulenguez <email address hidden> ] * Lower MIME priority for PS/PDF (closes: #935099). -- Laszlo Boszormenyi (GCS) <email address hidden> Sat, 28 Dec 2019 18:58:57 +0000
Available diffs
Superseded in sid-release |
graphicsmagick (1.4+really1.3.34-2) unstable; urgency=medium * Still use glibc malloc allocator. -- Laszlo Boszormenyi (GCS) <email address hidden> Wed, 25 Dec 2019 10:09:02 +0000
Available diffs
Superseded in sid-release |
graphicsmagick (1.4+really1.3.34-1) unstable; urgency=high * New upstream release, fixing the following security issues among others: - PNMInteger(): Place a generous arbitrary limit on the amount of PNM comment text to avoid DoS opportunity, - MagickClearException(): Destroy any existing exception info before re-initializing the exception info or else there will be a memory leak, - HuffmanDecodeImage(): Fix signed overflow on range check which leads to heap overflow, - ReadMNGImage(): Only magnify the image if the requested magnification methods are supported, - GenerateEXIFAttribute(): Add validations to prevent heap buffer overflow, - DrawPatternPath(): Don't leak memory if fill_pattern or stroke_pattern of cloned draw_info are not null, - CVE-2019-19953: PICT: Throw a writer exception if the PICT width limit is exceeded (closes: #947311). * Build with Google Thread-Caching Malloc library. * Update Standards-Version to 4.4.1 . -- Laszlo Boszormenyi (GCS) <email address hidden> Tue, 24 Dec 2019 20:23:10 +0000
Available diffs
Superseded in sid-release |
graphicsmagick (1.4+really1.3.33+hg16117-1) unstable; urgency=high * Mercurial snapshot, fixing the following security issue: - CVE-2019-16709: ReadDPSImage(): Fix memory leak when OpenBlob() reports failure. -- Laszlo Boszormenyi (GCS) <email address hidden> Thu, 10 Oct 2019 22:57:35 +0000
Available diffs
Superseded in sid-release |
graphicsmagick (1.4+really1.3.33+hg16115-1) unstable; urgency=high * Mercurial snapshot, fixing the following security issues: - ReadMNGImage(): skip coalescing layers if there is only one layer, - DrawStrokePolygon(): handle case where TraceStrokePolygon() returns NULL, - DrawDashPolygon(): handle case where DrawStrokePolygon() returns MagickFail, - TraceBezier(): detect arithmetic overflow and return errors via normal error path rather than exiting, - ExtractTokensBetweenPushPop(): fix non-terminal parsing loop, - GenerateEXIFAttribute(): check that we are not being directed to read an IFD that we are already parsing and quit in order to avoid a loop, - ReallocColormap(): avoid dereferencing a NULL pointer if image->colormap is NULL, - png_read_raw_profile(): fix validation of raw profile length, - TraceArcPath(): substitute a lineto command when tracing arc is impossible, - GenerateEXIFAttribute(): skip unsupported/invalid format 0. -- Laszlo Boszormenyi (GCS) <email address hidden> Sat, 28 Sep 2019 10:57:12 +0000
Available diffs
Superseded in sid-release |
graphicsmagick (1.4+really1.3.33-1) unstable; urgency=medium * New upstream release, including many security fixes. -- Laszlo Boszormenyi (GCS) <email address hidden> Thu, 25 Jul 2019 16:43:39 +0000
Available diffs
Superseded in sid-release |
graphicsmagick (1.4+really1.3.32-1) unstable; urgency=high * New upstream release, fixing the following security issues among others: - DrawImage(): Terminate drawing if DrawCompositeMask() reports failure, - DrawImage(): Detect an error in TracePath() and quit rather than forging on. * Backport security fixes: - ReadTIFFImage(): Fix typo in initialization of 'tile' pointer variable, - WriteDIBImage(): Detect arithmetic overflow of image_size, - WriteBMPImage(): Detect arithmetic overflow of image_size, - WriteBMPImage(): Assure that chromaticity uses double-precision for multiply before casting to unsigned integer. -- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 16 Jun 2019 18:10:05 +0000
Available diffs
- diff from 1.4~hg16039-1 to 1.4+really1.3.32-1 (440.6 KiB)
Superseded in sid-release |
graphicsmagick (1.4~hg16039-1) unstable; urgency=high * Mercurial snapshot, fixing the following security issues: - ImportRLEPixels(): Fix heap overflow caused by a typo in the code. Also fix undefined behavior caused by large left shifts of an unsigned char, - ThrowException(), ThrowLoggedException(): Handle the case where some passed character strings refer to existing exception character strings, - PICT: Allocate output buffer used by ExpandBuffer() on DecodeImage() stack, - WritePDFImage(): Allocate working buffer on stack and pass as argument to EscapeParenthesis() to eliminate a thread safety problem, - TranslateTextEx(): Remove support for reading from a file using '@filename' syntax, - DrawImage(): Only support '@filename' syntax to read drawing primitive from a file if we are not already drawing. * Update library symbols for this release. -- Laszlo Boszormenyi (GCS) <email address hidden> Thu, 06 Jun 2019 21:11:11 +0000
Available diffs
- diff from 1.4~hg15978-1 to 1.4~hg16039-1 (209.1 KiB)
graphicsmagick (1.4~hg15978-1) unstable; urgency=medium * Mercurial snapshot, fixing uninitialized integer value of log_configured. -- Laszlo Boszormenyi (GCS) <email address hidden> Sat, 27 Apr 2019 07:06:40 +0000
Available diffs
- diff from 1.4~hg15968-1 to 1.4~hg15978-1 (77.0 KiB)
- diff from 1.4~hg15976-1 to 1.4~hg15978-1 (1.8 KiB)
graphicsmagick (1.4~hg15976-1) unstable; urgency=high * Mercurial snapshot, fixing the following security issues: - ReadXWDImage(): Potential for heap overflow; Address header-directed arbitrary memory allocation, - ReadXWDImage(): Address segmentation violation and invalid memory reads with more validations, - Make built-in color tables fully const. * Break gnudatalanguage versions that doesn't initialize GraphicsMagick library (closes: #927688). * Update library symbols for this release. -- Laszlo Boszormenyi (GCS) <email address hidden> Mon, 22 Apr 2019 14:41:32 +0000
Available diffs
- diff from 1.4~hg15968-1 to 1.4~hg15976-1 (76.4 KiB)
Superseded in sid-release |
graphicsmagick (1.4~hg15968-1) unstable; urgency=high * Mercurial snapshot, fixing the following security issues (closes: #927029): - ReadMATImage(): Report a corrupt image exception if reader encounters end of file while reading scanlines (use of uninitialized value in IsGrayImag() ), - ReadTOPOLImage(): Report a corrupt image if reader encounters end of file while reading header rows (use of uninitialized value in InsertRow() ), - OpenCache(): Use unsigned 64-bit value to store CacheInfo offset and length as well as for the total pixels calculation to prevent some more arithmetic overflows, - SetNexus(): Apply resource limits to pixel nexus allocations to prevent arithmetic and integer overflows, - SetNexus(): Report error for empty region rather than crashing due to divide by zero exception, - ReadTXTImage(): Don't start new line if x_max < x_min to avoid floating point exception in SetNexus(), - ReadMATImage(): Quit if image scanlines are not fully populated due to exception to prevent use of uninitialized value in InsertComplexFloatRow(), - ReadMATImage(): Fix memory leak on unexpected end of file, - Throwing an exception is now thread-safe, - Fx module error handling/reporting improvements, - Fix various uses of allocated memory without checking if memory allocation has failed, - CVE-2019-11010: ReadMPCImage(): Deal with a profile length of zero, or an irrationally large profile length to prevent memory leak, - CVE-2019-11007: ReadMNGImage(): Fix small buffer overflow (one PixelPacket) of image colormap, - CVE-2019-11009: ReadXWDImage(): Fix heap buffer overflow while reading DirectClass XWD file, - CVE-2019-11006: ReadMIFFImage(): Detect end of file while reading RLE packets to prevent heap buffer overflow, - CVE-2019-11005: SVGStartElement(): Fix stack buffer overflow while parsing quoted font family value, - CVE-2019-11008: XWD: Perform more header validations, a file size validation, and fix arithmetic overflows leading to heap overwrite, - ReadWMFImage(): Reject WMF files with an empty bounding box to prevent division by zero problems, - WritePDBImage(): Use correct bits/sample rather than image->depth to prevent potential buffer overflow, - WriteMATLABImage(): Add completely missing error handling to prevent heap buffer overflow, - SetNexus(): Fix arithmetic overflow while testing x/y offset limits, - DrawPrimitive(): Check primitive point x/y values for NaN to prevent integer overflow, - DrawImage(): Fix integer overflow while validating gradient dimensions, - WritePDBImage(): Assure that input scanline is cleared in order to cover up some decoder bug to prevent use of uninitialized value, - ReadXWDImage(): Add more validation logic to avoid crashes due to FPE and invalid reads. * Update library symbols for this release. -- Laszlo Boszormenyi (GCS) <email address hidden> Mon, 15 Apr 2019 17:40:12 +0000
Available diffs
- diff from 1.4~hg15916-2 to 1.4~hg15968-1 (258.9 KiB)
graphicsmagick (1.4~hg15916-2) unstable; urgency=medium * Declare break on python{,3}-pgmagick versions compiled with GCC 7 compiled versions of GraphicsMagick (closes: #915603, #915606). -- Laszlo Boszormenyi (GCS) <email address hidden> Tue, 02 Apr 2019 18:49:40 +0000
Available diffs
- diff from 1.4~hg15916-1 to 1.4~hg15916-2 (945 bytes)
graphicsmagick (1.4~hg15916-1) unstable; urgency=high * Mercurial snapshot, fixing the following security issues: - ReadTIFFImage(): Only disassociate alpha channel for images where photometic is PHOTOMETRIC_RGB, - DrawDashPolygon(): Heap buffer overflow when parsing SVG images, - DrawPrimitive(): Add arithmetic overflow checks when converting computed coordinates from 'double' to 'long', - DrawImage(): Don't destroy draw_info in graphic_context when draw_info has not been allocated yet, - RenderFreetype(): Eliminate memory leak of GlyphInfo.image, - DrawDashPolygon(): Heap-buffer-overflow via read beyond end of dash pattern array, - ReadMIFFImage(): Tally directory length to avoid death by strlen(), - ReadMPCImage(): Tally directory length to avoid death by strlen(), - ReallocColormap(): Make sure that there is not a heap overwrite if the number of colors has been reduced. * Update library symbols for this release. -- Laszlo Boszormenyi (GCS) <email address hidden> Thu, 28 Feb 2019 17:50:19 +0000
Available diffs
- diff from 1.4~hg15896-1 to 1.4~hg15916-1 (21.2 KiB)
graphicsmagick (1.4~hg15896-1) unstable; urgency=high * Mercurial snapshot, fixing the following security issues: - ReadMNGImage(): Quit processing and report error upon failure to insert MNG background layer preventing out of memory issues, - ReadMIFFImage(): Improve pixel buffer calculations to defend against overflow, - ReadTIFFImage(): Make sure that image is in DirectClass mode and ignore any claimed colormap when the image is read using various functions, - ReadWPGImage(): Assure that all colormap entries are initialized, - DecodeImage(): Avoid a one-byte over-read of pixels heap allocation, - ReadTIFFImage(): Assure that opacity channel is initialized in the RGBAStrippedMethod case, - ReadMNGImage(): Bound maximum loop iterations by subrange as a primitive means of limiting resource consumption preventing out of memory issues, - CVE-2019-7397: WritePDFImage(): Make sure to free 'xref' before returning preventing several memory leaks, - ReadTIFFImage(): For planar TIFF, make sure that pixels are initialized in case some planes are missing. -- Laszlo Boszormenyi (GCS) <email address hidden> Sat, 16 Feb 2019 15:19:56 +0000
Available diffs
- diff from 1.4~hg15880-1 to 1.4~hg15896-1 (13.7 KiB)
graphicsmagick (1.4~hg15880-1) unstable; urgency=high * Mercurial snapshot, fixing the following security issues: - SetNexus(): Merge IsNexusInCore() implementation code into SetNexus() and add check for if cache_info->pixels is null, - CVE-2018-20185: BMP and DIB: Improve buffer size calculations to guard against arithmetic overflow. * Update Standards-Version to 4.3.0 . -- Laszlo Boszormenyi (GCS) <email address hidden> Tue, 05 Feb 2019 20:44:14 +0000
Available diffs
- diff from 1.4~hg15873-1 to 1.4~hg15880-1 (206.4 KiB)
graphicsmagick (1.4~hg15873-1) unstable; urgency=high * Mercurial snapshot, fixing the following security issues: - WriteImage(): Eliminate use of just-freed memory in clone_info->magick, - ReadMIFFImage(): Fix memory leak of profiles 'name' when claimed length is zero, - WriteXPMImage(): Assure that added colormap entry for transparent XPM is initialized, - ReadMNGImage(): Fix non-terminal MNG looping, - ReadMIFFImage(): Sanitize claimed profile size before allocating memory for it, - CVE-2018-20185: ReadBMPImage(): Fix heap overflow in 32-bit build due to arithmetic overflow (closes: #916719), - CVE-2018-20184: WriteTGAImage(): Image rows/columns must not be larger than 65535 (closes: #916721), - ReadTIFFImage(): More validations and stricter error reporting, - ReadMIFFImage(): Detect and reject zero-length deflate-encoded row in MIFF version 0, - CVE-2018-20189: ReadDIBImage(): DIB images claiming more than 8-bits per pixel are not colormapped (closes: #916752). * Add pkg-config to build dependency for FreeType 2.9.1+ detection. * Update library symbols for this release. -- Laszlo Boszormenyi (GCS) <email address hidden> Thu, 20 Dec 2018 19:04:33 +0000
Available diffs
- diff from 1.3.31-1 to 1.4~hg15873-1 (456.8 KiB)
graphicsmagick (1.3.31-1) unstable; urgency=high * New upstream release. * Fix CVE-2018-18544: memory leak of msl_image if OpenBlob() fails in ProcessMSLScript() . * Can detect FreeType via pkg-config (closes: #887720). * Enable Zstandard, the fast lossless compression algorithm support. * Update library symbols for this release. * Update Standards-Version to 4.2.1 . -- Laszlo Boszormenyi (GCS) <email address hidden> Tue, 20 Nov 2018 17:16:37 +0000
Available diffs
Superseded in stretch-release |
graphicsmagick (1.3.30+hg15796-1~deb9u2) stretch-security; urgency=medium * Backport fix for case-insensitive static module loader (closes: #911386). -- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 21 Oct 2018 17:36:20 -0400
graphicsmagick (1.3.30+hg15796-1) unstable; urgency=high * Mercurial snapshot, fixing the following security issues: - WEBP: Fix compiler warnings regarding uninitialized structure members, - ReadJPEGImage(): Allow libjpeg to use 1/5th of the total memory limit, - ReadJPEGImage(): Make sure that JPEG pixels array is initialized in case libjpeg fails to completely initialize it, - WriteOnePNGImage(): Free png_pixels as soon as possible, - ReadMIFFImage(): Detect EOF when reading using ReadBlobZC() and avoid subsequent heap read overflow, - ReadMVGImage(): Don't assume that in-memory MVG blob is a null-terminated C string, - ReadMVGImage(): Don't allow MVG files to side-load a file as the drawing primitive using '@' syntax, - FileToBlob(): Use confirm access APIs to verify that read access is allowed, and verify that file is a regular file, - ExtractTokensBetweenPushPop() needs to always return a valid pointer into the primitive string, - DrawPolygonPrimitive(): Fix leak of polygon set when object is completely outside image, - SetNexus(): For requests one pixel tall, SetNexus() was wrongly using pixels in-core rather than using a staging area for the case where the nexus rows extend beyond the image raster boundary, - ReadCINEONImage(): Quit immediately on EOF and detect short files, - ReadMVGImage(): Fix memory leak, - Add mechanism to approve embedded subformats in WPG, - ReadXBMImage(): Add validations for row and column dimensions, - MAT InsertComplexFloatRow(): Avoid signed overflow, - InsertComplexFloatRow(): Try not to lose the previous intention while avoiding signed overflow, - XBMInteger(): Limit the number of hex digits parsed to avoid signed integer overflow, - MAT: More aggresive data corruption checking, - MAT: Correctly check GetBlobSize(image) even for zipstreams inside blob, - MAT: Explicitly reject non-seekable streams, - DrawImage(): Add missing error-reporting logic to return immediately upon memory reallocation failure. Apply memory resource limits to PrimitiveInfo array allocation, - MagickAtoFChk(): Add additional validation checks for floating point values. NAN and +/- INFINITY values also map to 0.0 , - ReadMPCImage()/(ReadMIFFImage(): Insist that the format be identified prior to any comment, and that there is only one comment, - ConvertPrimitiveToPath(): Enlarge PathInfo array allocation to avoid possible heap write overflow, - WPG: Fix intentional 64 bit file offset overflow, - DrawImage(): Be more precise about error detection and reporting, - TranslateTextEx(): Fix off-by-one in loop bounds check which allowed a one-byte stack write overflow, - DrawImage(): Fix excessive memory consumption due to SetImageAttribute() appending values, - QuantumTransferMode(): CIE Log images with an alpha channel are not supported, - ConvertPrimitiveToPath(): Second attempt to prevent heap write overflow of PathInfo array, - ExtractTileJPG(): Enforce that JPEG tiles are read by the JPEG coder, - MIFF and MPC, need to avoid leaking value allocation (day-old bug), - ReadSFWImage(): Enforce that file is read using the JPEG reader, - FindEXIFAttribute()/GenerateEXIFAttribute(): Change size types from signed to unsigned and check for unsigned overflow, - GenerateEXIFAttribute(): Eliminate undefined shift, - TraceEllipse(): Detect arithmetic overflow when computing the number of points to allocate for an ellipse, - ReadMNGImage(): mng_LOOP chunk must be at least 5 bytes long, - ReadJPEGImage(): Apply a default limit of 100 progressive scans before the reader quits with an error. * Update library symbols for this release. -- Laszlo Boszormenyi (GCS) <email address hidden> Mon, 24 Sep 2018 21:54:36 +0000
Available diffs
- diff from 1.3.30-1 to 1.3.30+hg15796-1 (18.0 MiB)
graphicsmagick (1.3.30-1) unstable; urgency=high * New upstream release, including many security fixes. * Build with all hardening enabled. -- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 24 Jun 2018 08:20:31 +0000
Available diffs
- diff from 1.3.28-2 to 1.3.30-1 (355.4 KiB)
- diff from 1.3.29+hg15665-1 to 1.3.30-1 (18.0 MiB)
Published in jessie-release |
graphicsmagick (1.3.20-3+deb8u2) jessie-security; urgency=high * Fix CVE-2015-8808: denial of service (uninitialized memory access) via a crafted GIF file. * Fix CVE-2016-2317: segmentation violation when reading SVG files (closes: #814732). * Fix CVE-2016-2318: make SVG path and other primitive parsing more robust. * Fix CVE-2016-5240: endless loop problem caused by negative stroke-dasharray arguments. * Fix CVE-2016-3714: remove delegates support for Gnuplot files. * Fix CVE-2016-3715: remove undocumented "TMP" magick prefix. * Fix CVE-2016-5118: remove support for reading input from a shell command, or writing output to a shell command (closes: #825800). * Fix CVE-2016-7996: possible heap overflow of colormap in Q8 build. * Fix CVE-2016-7997: correctly flip image->blob and rotated_image->blob. * Fix CVE-2016-8682: stack-based buffer overflow in ReadSCTImage (sct.c). * Fix CVE-2016-8684: memory allocation failure in MagickMalloc (memory.c). * Fix CVE-2016-8683: memory allocation failure in ReadPCXImage (pcx.c). * Fix CVE-2016-7800: unsigned underflow leading to heap overflow when parsing 8BIM chunk. * Fix CVE-2016-9830: memory allocation failure in MagickRealloc (closes: #847055). * Add new MagickGetToken@Base symbol to libgraphicsmagick3. -- Laszlo Boszormenyi (GCS) <email address hidden> Wed, 05 Oct 2016 17:24:05 +0000
graphicsmagick (1.3.29+hg15665-1) unstable; urgency=high * Mercurial snapshot, fixing the following security issues: - use of uninitialized value in IsMonochromeImage() , - divide by zero in GetPixelOpacity() , - write beyond array bounds in TraceStrokePolygon() , - use of uninitialized value in format8BIM() , - assertion failure in WriteBlob() , - out of bounds write in TraceEllipse() , - memory leak and use of uninitialized memory when handling eXIf chunk in png_malloc() , - floating point exception in WriteTIFFImage() , - leak of Image when TIFFReadRGBAImage() reports failure, - potentional leak when compressed object is corrupted, - floating point exception in WriteTIFFImage() , - heap double free in Magick::BlobRef::~BlobRef() , - direct leak in TIFFClientOpen() , - indirect leak in CloneImage() , - direct leak in ReadOneJNGImage() , - heap buffer overflow in put1bitbwtile() , - use of uninitialized value in SyncImageCallBack() , - validate tile memory requests for TIFFReadRGBATile() . * Remove profiles/sRGB Color Space Profile.ICM and jp2/data/colorprofiles/srgb.icm for being non-free. * Remove zlib/contrib/dotzlib/DotZLib.chm for no source available. -- Laszlo Boszormenyi (GCS) <email address hidden> Fri, 25 May 2018 19:21:07 +0000
Available diffs
- diff from 1.3.29-1 to 1.3.29+hg15665-1 (18.0 MiB)
graphicsmagick (1.3.29-1) unstable; urgency=high * New upstream release, including many security fixes. * Remove previously backported security patches. * Update library symbols for this release. * Update debhelper level to 11 . * Update Standards-Version to 4.1.4 . -- Laszlo Boszormenyi (GCS) <email address hidden> Tue, 08 May 2018 20:33:46 +0000
graphicsmagick (1.3.28-2) unstable; urgency=high * Backport security fixes: - don't use rescale map if it was not allocated, - validate number of colormap bits to avoid undefined shift behavior, - defend against partial scanf() expression matching, resulting in benign use of uninitialized data, - don't use rescale map if it was not allocated, - fix tile index overflow, - reject XPM if it contains non-whitespace control characters, - fix forged amount of frames 6755, - validate header length and offset properties, - fixed memory leak when tile overflows, - fix forged amount of frames 7076, - check for forged image that overflows file size, - validate size request prior to allocation, - validate that file size is sufficient for claimed image properties, - fix signed integer overflow when computing pixels size, - include number of FITS scenes in file size validations, - allocate space for null termination and null terminate string, - validate that samples per pixel is in valid range, - check whether datablock is really read, - verify that sufficient backing data exists before allocating memory to read it, - duplicate image check for data with fixed geometry, - CVE-2018-9018: avoid divide-by-zero if delay or timeout properties changed while ticks_per_second is zero (closes: #894396), - add checks for EOF, - validate that PICT rectangles do not have zero dimensions, - check image pixel limits before allocating memory for tile. * Backport patch to redesign ReadBlobDwordLSB() to be more effective. * Backport patch to destroy tile_image in ThrowPICTReaderException() macro to simplify logic. * Backport patch to remove shadowed tile_image variable which defeats new ThrowPICTReaderException() implementation. -- Laszlo Boszormenyi (GCS) <email address hidden> Sat, 31 Mar 2018 11:05:51 +0000
Available diffs
- diff from 1.3.28-1 to 1.3.28-2 (25.4 KiB)
graphicsmagick (1.3.28-1) unstable; urgency=high * New upstream release, fixing the following security issues among others: - BMP: Fix non-terminal loop due to unexpected bit-field mask value (DOS opportunity), - PALM: Fix heap buffer underflow in builds with QuantumDepth=8, - SetNexus() Fix heap overwrite under certain conditions due to using a wrong destination buffer, - TIFF: Fix heap buffer read overflow in LocaleNCompare() when parsing NEWS profile. * Remove previously backported security patches. -- Laszlo Boszormenyi (GCS) <email address hidden> Sat, 20 Jan 2018 20:19:29 +0000
Available diffs
- diff from 1.3.27-3 to 1.3.28-1 (115.6 KiB)
- diff from 1.3.27-4 to 1.3.28-1 (116.6 KiB)
graphicsmagick (1.3.27-4) unstable; urgency=high * Fix CVE-2018-5685: infinite loop in ReadBMPImage() (closes: #887158). * Fix memory leak of global colormap. * Fix memory leak of chunk and mng_info in error path. * Update Standards-Version to 4.1.3 . -- Laszlo Boszormenyi (GCS) <email address hidden> Mon, 15 Jan 2018 19:06:43 +0000
Available diffs
- diff from 1.3.27-3 to 1.3.27-4 (2.6 KiB)
graphicsmagick (1.3.27-3) unstable; urgency=high * Fix heap-buffer-overflow on LocaleNCompare() . * Add some assertions to verify that the image pointer provided by libwebp is valid. * Fix NULL pointer dereference in ReadMNGImage() . * Fix CVE-2017-17913: stack-buffer-overflow in WriteWEBPImage() . * Fix CVE-2017-17915: heap-buffer-overflow in ReadMNGImage() . -- Laszlo Boszormenyi (GCS) <email address hidden> Wed, 27 Dec 2017 22:12:30 +0000
Available diffs
- diff from 1.3.27-2 to 1.3.27-3 (5.5 KiB)
graphicsmagick (1.3.27-2) unstable; urgency=high * Fix CVE-2017-17782: heap-based buffer over-read in ReadOneJNGImage() (closes: #884905). * Fix CVE-2017-17783: buffer over-read in ReadPALMImage() (closes: #884904). -- Laszlo Boszormenyi (GCS) <email address hidden> Mon, 25 Dec 2017 17:18:01 +0000
Available diffs
- diff from 1.3.27-1 to 1.3.27-2 (3.1 KiB)
graphicsmagick (1.3.27-1) unstable; urgency=medium * New upstream release. * Remove previously backported security patches. * Update library symbols for this release. * Add libwebp-dev dependency to libgraphicsmagick1-dev (closes: #863564). * Update Standards-Version to 4.1.2 . -- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 10 Dec 2017 17:12:28 +0000
Available diffs
- diff from 1.3.26-19 to 1.3.27-1 (530.2 KiB)
graphicsmagick (1.3.26-19) unstable; urgency=high * Fix CVE-2017-16669: heap buffer overflow in AcquireCacheNexus() (closes: #881391). * Fix CVE-2017-13134: heap buffer overflow in SFWScan() (closes: #881524). -- Laszlo Boszormenyi (GCS) <email address hidden> Sat, 11 Nov 2017 09:12:53 +0000
Available diffs
- diff from 1.3.26-16 to 1.3.26-19 (20.1 KiB)
- diff from 1.3.26-18 to 1.3.26-19 (17.5 KiB)
graphicsmagick (1.3.26-18) unstable; urgency=high * Fix CVE-2017-16547: remote denial of service (negative strncpy and application crash). * Fix CVE-2017-16545: NULL pointer dereference (write) with malformed WPG image. -- Laszlo Boszormenyi (GCS) <email address hidden> Mon, 06 Nov 2017 17:02:07 +0000
Available diffs
- diff from 1.3.26-17 to 1.3.26-18 (1.9 KiB)
graphicsmagick (1.3.26-17) unstable; urgency=high * Fix CVE-2017-16353: heap read overflow vulnerability in DescribeImage() . * Fix CVE-2017-16352: heap-based buffer overflow vulnerability in DescribeImage() . -- Laszlo Boszormenyi (GCS) <email address hidden> Thu, 02 Nov 2017 05:57:25 +0000
Available diffs
graphicsmagick (1.3.26-16) unstable; urgency=high * Fix CVE-2017-15930: NULL pointer dereference while transferring JPEG scanlines (closes: #879999). -- Laszlo Boszormenyi (GCS) <email address hidden> Sat, 28 Oct 2017 17:54:09 +0000
Available diffs
- diff from 1.3.26-15 to 1.3.26-16 (3.9 KiB)
1 → 75 of 136 results | First • Previous • Next • Last |