Format: 1.8 Date: Sat, 16 Feb 2019 15:19:56 +0000 Source: graphicsmagick Binary: graphicsmagick libgraphicsmagick-q16-3 libgraphicsmagick1-dev libgraphicsmagick++-q16-12 libgraphicsmagick++1-dev libgraphics-magick-perl graphicsmagick-imagemagick-compat graphicsmagick-libmagick-dev-compat graphicsmagick-dbg Architecture: armhf Version: 1.4~hg15896-1 Distribution: disco-proposed Urgency: high Maintainer: Launchpad Build Daemon Changed-By: Laszlo Boszormenyi (GCS) Description: graphicsmagick - collection of image processing tools graphicsmagick-dbg - format-independent image processing - debugging symbols graphicsmagick-imagemagick-compat - image processing tools providing ImageMagick interface graphicsmagick-libmagick-dev-compat - image processing libraries providing ImageMagick interface libgraphics-magick-perl - format-independent image processing - perl interface libgraphicsmagick++-q16-12 - format-independent image processing - C++ shared library libgraphicsmagick++1-dev - format-independent image processing - C++ development files libgraphicsmagick-q16-3 - format-independent image processing - C shared library libgraphicsmagick1-dev - format-independent image processing - C development files Changes: graphicsmagick (1.4~hg15896-1) unstable; urgency=high . * Mercurial snapshot, fixing the following security issues: - ReadMNGImage(): Quit processing and report error upon failure to insert MNG background layer preventing out of memory issues, - ReadMIFFImage(): Improve pixel buffer calculations to defend against overflow, - ReadTIFFImage(): Make sure that image is in DirectClass mode and ignore any claimed colormap when the image is read using various functions, - ReadWPGImage(): Assure that all colormap entries are initialized, - DecodeImage(): Avoid a one-byte over-read of pixels heap allocation, - ReadTIFFImage(): Assure that opacity channel is initialized in the RGBAStrippedMethod case, - ReadMNGImage(): Bound maximum loop iterations by subrange as a primitive means of limiting resource consumption preventing out of memory issues, - CVE-2019-7397: WritePDFImage(): Make sure to free 'xref' before returning preventing several memory leaks, - ReadTIFFImage(): For planar TIFF, make sure that pixels are initialized in case some planes are missing. Checksums-Sha1: d316040e10cfcc57a660dbcb156333259f90c1ff 3946068 graphicsmagick-dbg_1.4~hg15896-1_armhf.deb e1c9aa5743ac9fdf7d2b819816125cb906993cdb 9507 graphicsmagick_1.4~hg15896-1_armhf.buildinfo d498c245b4cd84458090e4030e7846a6794124fb 674020 graphicsmagick_1.4~hg15896-1_armhf.deb 5b8386046120dc67314c747a64607143d2f3dfb5 49168 libgraphics-magick-perl_1.4~hg15896-1_armhf.deb f1e63b2709db68ba153ebda605a340c949c1aa41 84480 libgraphicsmagick++-q16-12_1.4~hg15896-1_armhf.deb 28e4437b236e138a6495b1d8110f94200c9aced1 255796 libgraphicsmagick++1-dev_1.4~hg15896-1_armhf.deb 8ca1977b0232c7c916d533563aa28fb00d36e558 1042928 libgraphicsmagick-q16-3_1.4~hg15896-1_armhf.deb 5a29d899425711f67f8c77d01051c8cd847db8cb 1304560 libgraphicsmagick1-dev_1.4~hg15896-1_armhf.deb Checksums-Sha256: a61a07ed1fa2275cf196cd039f058b66f8a2c75a03518f5a3de3ed620e4c8c6a 3946068 graphicsmagick-dbg_1.4~hg15896-1_armhf.deb 9df830fea55f0331cc0de172be4854952b3e38510a80b3f8ef7953c98ff21884 9507 graphicsmagick_1.4~hg15896-1_armhf.buildinfo 513ebd4cd938824b9020027d380656c14f8a10ae9f5e5ec94e2c39ef52ca30ca 674020 graphicsmagick_1.4~hg15896-1_armhf.deb 9fec21506e791575c696bc448c87f6bd457d0c9013ad7f80ebc282e97f31f3bd 49168 libgraphics-magick-perl_1.4~hg15896-1_armhf.deb 0b6c3c415af94a4b7faf7f02415e7cf94a191c5719f31813ce461ce1f9a6b81d 84480 libgraphicsmagick++-q16-12_1.4~hg15896-1_armhf.deb f68727af000294272d6b593d2aac0af01c3d7a1e068f5698c97863ce8b744400 255796 libgraphicsmagick++1-dev_1.4~hg15896-1_armhf.deb 27b79b1c00a57f799edb2a44cae702c527f2a9ef9d95560ed6073b759f8d7cb7 1042928 libgraphicsmagick-q16-3_1.4~hg15896-1_armhf.deb b4678a466c69499a49a5a5e93d368d6ff394786f2f9c0c40303d77d119a5cd83 1304560 libgraphicsmagick1-dev_1.4~hg15896-1_armhf.deb Files: c2b98a7ce9b349d40ab0a7d25dfdb9b5 3946068 debug optional graphicsmagick-dbg_1.4~hg15896-1_armhf.deb c55fbb01b28a2de8ef662f1752d69036 9507 graphics optional graphicsmagick_1.4~hg15896-1_armhf.buildinfo fa876c23f8adcd6aada49abaaf585afa 674020 graphics optional graphicsmagick_1.4~hg15896-1_armhf.deb 092d19655bc0e2c5f39c3bbe465f53d3 49168 perl optional libgraphics-magick-perl_1.4~hg15896-1_armhf.deb 504bd8b3dd7e6636f6519c05ece2900b 84480 libs optional libgraphicsmagick++-q16-12_1.4~hg15896-1_armhf.deb d1bbf8debaa31e927492ec81a069e569 255796 libdevel optional libgraphicsmagick++1-dev_1.4~hg15896-1_armhf.deb 5b5f57b9c69b52736dfae51cf934ef1a 1042928 libs optional libgraphicsmagick-q16-3_1.4~hg15896-1_armhf.deb 420c9eb774305e3aa435334e96072318 1304560 libdevel optional libgraphicsmagick1-dev_1.4~hg15896-1_armhf.deb