Debian
imagemagick package

imagemagick 8:6.9.12.98+dfsg1-1 source package in Debian

Changelog

imagemagick (8:6.9.12.98+dfsg1-1) experimental; urgency=medium

  * New upstream version
  * Drop package imagemagick-doc and imagemagick-common
  * Fix CVE-2023-3428: A heap-based buffer overflow vulnerability
    was found in coders/tiff.c. This issue may allow a local attacker
    to trick the user into opening a specially crafted file,
    resulting in an application crash and denial of service.
  * CVE-2023-3745: A heap-based buffer overflow issue
    was found in ImageMagick's PushCharPixel() function
    in quantum-private.h. This issue may allow a local
    attacker to trick the user into opening a specially crafted file,
    triggering an out-of-bounds read error and allowing an application
    to crash, resulting in a denial of service.
  * Import patch for upstream that avoid a FTBFS due to
    SOURCE_DATE_EPOCH set
  * Use a debian policy. Install other policies as user
    convenience.

 -- Bastien Roucariès <email address hidden>  Sat, 21 Oct 2023 14:40:53 +0000

Upload details

Uploaded by:
ImageMagick Packaging Team
Uploaded to:
Experimental
Original maintainer:
ImageMagick Packaging Team
Architectures:
any all
Section:
graphics
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Builds

Downloads

File Size SHA-256 Checksum
imagemagick_6.9.12.98+dfsg1-1.dsc 4.9 KiB 8f06b2ad5b8799e5249366ff0bafe7e24da483f087cecb73e1b09030030b10e1
imagemagick_6.9.12.98+dfsg1.orig.tar.xz 9.2 MiB 123a3d1109bf76601614df30d886099abd47aad1b5af8789fae0a954e7475e2d
imagemagick_6.9.12.98+dfsg1-1.debian.tar.xz 253.8 KiB 96f9fd6ca11075c2a3c63097d1fe4eb0e2252e389ff216d1eb08e6b5be560574

No changes file available.

Binary packages built by this source