graphicsmagick 1.3.30+hg15796-1~deb9u4 source package in Debian
Changelog
graphicsmagick (1.3.30+hg15796-1~deb9u4) stretch-security; urgency=high
* Non-maintainer upload by the Security Team.
* Fix CVE-2019-12921: remote information disclosure (attacker can read
arbitrary files) via a crafted image; fix is to remove support for reading
from a file using '@filename' syntax
* Fix CVE-2020-10938: Fix signed overflow on range check in
HuffmanDecodeImage function which leads to heap overflow in 32-bit
applications.
-- Roberto C. Sanchez <email address hidden> Tue, 14 Apr 2020 21:51:48 -0400
Upload details
- Uploaded by:
- Laszlo Boszormenyi
- Uploaded to:
- Stretch
- Original maintainer:
- Laszlo Boszormenyi
- Architectures:
- any all
- Section:
- graphics
- Urgency:
- Very Urgent
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Stretch | release | main | graphics |
Builds
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| graphicsmagick_1.3.30+hg15796-1~deb9u4.dsc | 2.8 KiB | d6f865cc2aacea195741a5d1662d3a6bf9bb5649f93eb195529062b19ccb4bc3 |
| graphicsmagick_1.3.30+hg15796.orig.tar.xz | 26.1 MiB | b6748d7368f686c346c90b9077699568d1b60a25e820b7fe2d68168bad4c80b7 |
| graphicsmagick_1.3.30+hg15796-1~deb9u4.debian.tar.xz | 155.6 KiB | 7d08470c70acccb2e8bc2eacc93f58fe450e551dc06deb53b04e9d7a4c178054 |
No changes file available.
