Format: 1.8 Date: Mon, 24 Sep 2018 21:54:36 +0000 Source: graphicsmagick Binary: graphicsmagick libgraphicsmagick-q16-3 libgraphicsmagick1-dev libgraphicsmagick++-q16-12 libgraphicsmagick++1-dev libgraphics-magick-perl graphicsmagick-imagemagick-compat graphicsmagick-libmagick-dev-compat graphicsmagick-dbg Architecture: s390x Version: 1.3.30+hg15796-1 Distribution: cosmic-proposed Urgency: high Maintainer: Launchpad Build Daemon Changed-By: Laszlo Boszormenyi (GCS) Description: graphicsmagick - collection of image processing tools graphicsmagick-dbg - format-independent image processing - debugging symbols graphicsmagick-imagemagick-compat - image processing tools providing ImageMagick interface graphicsmagick-libmagick-dev-compat - image processing libraries providing ImageMagick interface libgraphics-magick-perl - format-independent image processing - perl interface libgraphicsmagick++-q16-12 - format-independent image processing - C++ shared library libgraphicsmagick++1-dev - format-independent image processing - C++ development files libgraphicsmagick-q16-3 - format-independent image processing - C shared library libgraphicsmagick1-dev - format-independent image processing - C development files Changes: graphicsmagick (1.3.30+hg15796-1) unstable; urgency=high . * Mercurial snapshot, fixing the following security issues: - WEBP: Fix compiler warnings regarding uninitialized structure members, - ReadJPEGImage(): Allow libjpeg to use 1/5th of the total memory limit, - ReadJPEGImage(): Make sure that JPEG pixels array is initialized in case libjpeg fails to completely initialize it, - WriteOnePNGImage(): Free png_pixels as soon as possible, - ReadMIFFImage(): Detect EOF when reading using ReadBlobZC() and avoid subsequent heap read overflow, - ReadMVGImage(): Don't assume that in-memory MVG blob is a null-terminated C string, - ReadMVGImage(): Don't allow MVG files to side-load a file as the drawing primitive using '@' syntax, - FileToBlob(): Use confirm access APIs to verify that read access is allowed, and verify that file is a regular file, - ExtractTokensBetweenPushPop() needs to always return a valid pointer into the primitive string, - DrawPolygonPrimitive(): Fix leak of polygon set when object is completely outside image, - SetNexus(): For requests one pixel tall, SetNexus() was wrongly using pixels in-core rather than using a staging area for the case where the nexus rows extend beyond the image raster boundary, - ReadCINEONImage(): Quit immediately on EOF and detect short files, - ReadMVGImage(): Fix memory leak, - Add mechanism to approve embedded subformats in WPG, - ReadXBMImage(): Add validations for row and column dimensions, - MAT InsertComplexFloatRow(): Avoid signed overflow, - InsertComplexFloatRow(): Try not to lose the previous intention while avoiding signed overflow, - XBMInteger(): Limit the number of hex digits parsed to avoid signed integer overflow, - MAT: More aggresive data corruption checking, - MAT: Correctly check GetBlobSize(image) even for zipstreams inside blob, - MAT: Explicitly reject non-seekable streams, - DrawImage(): Add missing error-reporting logic to return immediately upon memory reallocation failure. Apply memory resource limits to PrimitiveInfo array allocation, - MagickAtoFChk(): Add additional validation checks for floating point values. NAN and +/- INFINITY values also map to 0.0 , - ReadMPCImage()/(ReadMIFFImage(): Insist that the format be identified prior to any comment, and that there is only one comment, - ConvertPrimitiveToPath(): Enlarge PathInfo array allocation to avoid possible heap write overflow, - WPG: Fix intentional 64 bit file offset overflow, - DrawImage(): Be more precise about error detection and reporting, - TranslateTextEx(): Fix off-by-one in loop bounds check which allowed a one-byte stack write overflow, - DrawImage(): Fix excessive memory consumption due to SetImageAttribute() appending values, - QuantumTransferMode(): CIE Log images with an alpha channel are not supported, - ConvertPrimitiveToPath(): Second attempt to prevent heap write overflow of PathInfo array, - ExtractTileJPG(): Enforce that JPEG tiles are read by the JPEG coder, - MIFF and MPC, need to avoid leaking value allocation (day-old bug), - ReadSFWImage(): Enforce that file is read using the JPEG reader, - FindEXIFAttribute()/GenerateEXIFAttribute(): Change size types from signed to unsigned and check for unsigned overflow, - GenerateEXIFAttribute(): Eliminate undefined shift, - TraceEllipse(): Detect arithmetic overflow when computing the number of points to allocate for an ellipse, - ReadMNGImage(): mng_LOOP chunk must be at least 5 bytes long, - ReadJPEGImage(): Apply a default limit of 100 progressive scans before the reader quits with an error. * Update library symbols for this release. Checksums-Sha1: 86001d6dac0108c5eb80dd08a8fd73b280884442 4152292 graphicsmagick-dbg_1.3.30+hg15796-1_s390x.deb dedd5bc3c00ed858cba806f5c127d75f248a7af8 10792 graphicsmagick_1.3.30+hg15796-1_s390x.buildinfo ec1ed16e7876997b8294ea7468a86d542ed7a7df 639148 graphicsmagick_1.3.30+hg15796-1_s390x.deb 4a096c50057ec3a521d0bfaf07c1cfd970d35256 48568 libgraphics-magick-perl_1.3.30+hg15796-1_s390x.deb 0048a01776e713a911fb43372b698e02878481a6 94756 libgraphicsmagick++-q16-12_1.3.30+hg15796-1_s390x.deb e7c58e31cf2c2bbb68a244cd570e439fc729ccaa 264080 libgraphicsmagick++1-dev_1.3.30+hg15796-1_s390x.deb 42f298b295b27907bf7048d5b809e5e1ba9403f1 1005120 libgraphicsmagick-q16-3_1.3.30+hg15796-1_s390x.deb c93332c353ade520b07ad196390204aaf4567b9a 1257972 libgraphicsmagick1-dev_1.3.30+hg15796-1_s390x.deb Checksums-Sha256: 43904a98a5e3351ec33175c95051f18f750937cbc9b2af67fccde99a4e8d62cc 4152292 graphicsmagick-dbg_1.3.30+hg15796-1_s390x.deb 269329f4c42e750bb9cae59ae7e44b2b7cead08b12a0c8e6f448a2fffa9649c7 10792 graphicsmagick_1.3.30+hg15796-1_s390x.buildinfo 9c7aca5e70331eb85231115abff413aa8d3b8c05b9c49ae35cfb01e00b9ab5d8 639148 graphicsmagick_1.3.30+hg15796-1_s390x.deb 2d7b89e3c62a87ade8712bceaaf45651657ce08ca6952a1a461adb87580a8e0c 48568 libgraphics-magick-perl_1.3.30+hg15796-1_s390x.deb 400d97503554f767523d96de04caeaec5580dc2b7843f2c709eca323b120544a 94756 libgraphicsmagick++-q16-12_1.3.30+hg15796-1_s390x.deb dfc2b015df92c41a89728d605332fa95402556554391e46f6a6971894a970622 264080 libgraphicsmagick++1-dev_1.3.30+hg15796-1_s390x.deb 9c9ac1a4126890698af27aa48618cc36beb2bdfb7ed0ec8883d847dcbdda5d6d 1005120 libgraphicsmagick-q16-3_1.3.30+hg15796-1_s390x.deb e7bcae250baf294f977e20092af0b445f163968a4a49049c9254abe6050d618e 1257972 libgraphicsmagick1-dev_1.3.30+hg15796-1_s390x.deb Files: 77a8df310b6d3641b1e51e207c607011 4152292 debug optional graphicsmagick-dbg_1.3.30+hg15796-1_s390x.deb d2856e2e6a5c28dc201fe039930582de 10792 graphics optional graphicsmagick_1.3.30+hg15796-1_s390x.buildinfo ab070bee0b91deebd2ae45c0f92ac430 639148 graphics optional graphicsmagick_1.3.30+hg15796-1_s390x.deb 9a6c113195fd3de8bff82eea0f8f865e 48568 perl optional libgraphics-magick-perl_1.3.30+hg15796-1_s390x.deb 3d5115ce5fa100aa7b785aac0e29e367 94756 libs optional libgraphicsmagick++-q16-12_1.3.30+hg15796-1_s390x.deb 118d63cca2dfe542ea3d9dfb67b91cee 264080 libdevel optional libgraphicsmagick++1-dev_1.3.30+hg15796-1_s390x.deb e0cf6b7ba522b6ef72b01f807cbcb1f7 1005120 libs optional libgraphicsmagick-q16-3_1.3.30+hg15796-1_s390x.deb c923ca805737136b54db974be30198e8 1257972 libdevel optional libgraphicsmagick1-dev_1.3.30+hg15796-1_s390x.deb