[ubuntu/eoan-proposed] imagemagick 8:6.9.10.23+dfsg-2.1ubuntu1 (Accepted)

Steve Langasek steve.langasek at ubuntu.com
Wed May 8 04:27:20 UTC 2019 

imagemagick (8:6.9.10.23+dfsg-2.1ubuntu1) eoan; urgency=low

  * Merge from Debian unstable.  Remaining changes:
    - Drop dependency on libopenjp2-7-dev, which is needed for JPEG2000
      but is not in main.
    - demote libmagickcore-6.q16hdri-6-extra and libmagickcore-6.q16-6-extra
      Recommends on libjxr-tools to Suggests, as it is in universe.
    - Drop build-dependency on libheif-dev.

imagemagick (8:6.9.10.23+dfsg-2.1) unstable; urgency=medium

  * Non-maintainer upload.
  * Stack-based buffer overflow in function PopHexPixel in coders/ps.c
    (CVE-2019-9956) (Closes: #925395)
  * Heap-buffer-overflow in WriteTIFFImage of coders/tiff.c (CVE-2019-10650)
    (Closes: #926091)

Date: Tue, 07 May 2019 21:24:32 -0700
Changed-By: Steve Langasek <steve.langasek at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/imagemagick/8:6.9.10.23+dfsg-2.1ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 07 May 2019 21:24:32 -0700
Source: imagemagick
Architecture: source
Version: 8:6.9.10.23+dfsg-2.1ubuntu1
Distribution: eoan
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Steve Langasek <steve.langasek at ubuntu.com>
Closes: 925395 926091
Changes:
 imagemagick (8:6.9.10.23+dfsg-2.1ubuntu1) eoan; urgency=low
 .
   * Merge from Debian unstable.  Remaining changes:
     - Drop dependency on libopenjp2-7-dev, which is needed for JPEG2000
       but is not in main.
     - demote libmagickcore-6.q16hdri-6-extra and libmagickcore-6.q16-6-extra
       Recommends on libjxr-tools to Suggests, as it is in universe.
     - Drop build-dependency on libheif-dev.
 .
 imagemagick (8:6.9.10.23+dfsg-2.1) unstable; urgency=medium
 .
   * Non-maintainer upload.
   * Stack-based buffer overflow in function PopHexPixel in coders/ps.c
     (CVE-2019-9956) (Closes: #925395)
   * Heap-buffer-overflow in WriteTIFFImage of coders/tiff.c (CVE-2019-10650)
     (Closes: #926091)
Checksums-Sha1:
 efe101b3ea0431b9ef47bc26dd21b57c36f695af 5243 imagemagick_6.9.10.23+dfsg-2.1ubuntu1.dsc
 7c441eed9379ce0fe3d6f5f3ec1b4da7c74f13e4 226308 imagemagick_6.9.10.23+dfsg-2.1ubuntu1.debian.tar.xz
 423d8df2ec3959569f93039f3c8741822d417a9d 14102 imagemagick_6.9.10.23+dfsg-2.1ubuntu1_source.buildinfo
Checksums-Sha256:
 f03507fb90ccd88b1cef1a76976bce439625cfc5dd7cea41cf16c88bb73372b6 5243 imagemagick_6.9.10.23+dfsg-2.1ubuntu1.dsc
 e42d2c285fbf9956d1c31aa5716195adc2d479cb5c464b57adf73842c606ce7e 226308 imagemagick_6.9.10.23+dfsg-2.1ubuntu1.debian.tar.xz
 dad0932ba5c4bb1572446e56a0cbc60112256fa9134adc0b545b1e7afaf0ff9d 14102 imagemagick_6.9.10.23+dfsg-2.1ubuntu1_source.buildinfo
Files:
 e48990804aa2f4a2c1660c52b21911f8 5243 graphics optional imagemagick_6.9.10.23+dfsg-2.1ubuntu1.dsc
 582e3ffa43ad85a238916d0baf39bcd9 226308 graphics optional imagemagick_6.9.10.23+dfsg-2.1ubuntu1.debian.tar.xz
 10ddf0f5b0979ddd2b72b60ca8210504 14102 graphics optional imagemagick_6.9.10.23+dfsg-2.1ubuntu1_source.buildinfo
Original-Maintainer: ImageMagick Packaging Team <pkg-gmagick-im-team at lists.alioth.debian.org>

-----BEGIN PGP SIGNATURE-----
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=XEIv
-----END PGP SIGNATURE-----

More information about the Eoan-changes mailing list