[ubuntu/lucid-security] imagemagick 7:6.5.7.8-1ubuntu1.2 (Accepted)
Marc Deslauriers
marc.deslauriers at ubuntu.com
Tue May 1 15:04:22 UTC 2012
imagemagick (7:6.5.7.8-1ubuntu1.2) lucid-security; urgency=low
* SECURITY UPDATE: denial of service and possible code execution via
malformed ResolutionUnit or IOP tags.
- debian/patches/CVE-2012-0247.patch: properly calculate
lengths and sizes in magick/{profile,property}.c.
- CVE-2012-0247
- CVE-2012-0248
- CVE-2012-1185
- CVE-2012-1186
* SECURITY UPDATE: denial of service and possible code execution via
EXIF tags.
- debian/patches/CVE-2012-0259.patch: don't copy invalid memory in
coders/tiff.c, properly initialize buffers in magick/property.c.
- CVE-2012-0259
- CVE-2012-1798
* SECURITY UPDATE: denial of service and possible code execution via
JPEG EXIF integer overflow.
- debian/patches/CVE-2012-1610.patch: check number of bytes in
magick/{profile,property}.c.
- CVE-2012-1610
Date: Fri, 27 Apr 2012 15:41:13 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/imagemagick/7:6.5.7.8-1ubuntu1.2
-------------- next part --------------
Format: 1.8
Date: Fri, 27 Apr 2012 15:41:13 -0400
Source: imagemagick
Binary: imagemagick imagemagick-dbg imagemagick-doc libmagickcore2 libmagickcore2-extra libmagickcore-dev libmagickwand2 libmagickwand-dev libmagick++2 libmagick++-dev perlmagick
Architecture: source
Version: 7:6.5.7.8-1ubuntu1.2
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
imagemagick - image manipulation programs
imagemagick-dbg - debugging symbols for ImageMagick
imagemagick-doc - document files of ImageMagick
libmagick++-dev - object-oriented C++ interface to ImageMagick - development files
libmagick++2 - object-oriented C++ interface to ImageMagick
libmagickcore-dev - low-level image manipulation library - development files
libmagickcore2 - low-level image manipulation library
libmagickcore2-extra - low-level image manipulation library - extra codecs
libmagickwand-dev - image manipulation library - development files
libmagickwand2 - image manipulation library
perlmagick - Perl interface to the ImageMagick graphics routines
Changes:
imagemagick (7:6.5.7.8-1ubuntu1.2) lucid-security; urgency=low
.
* SECURITY UPDATE: denial of service and possible code execution via
malformed ResolutionUnit or IOP tags.
- debian/patches/CVE-2012-0247.patch: properly calculate
lengths and sizes in magick/{profile,property}.c.
- CVE-2012-0247
- CVE-2012-0248
- CVE-2012-1185
- CVE-2012-1186
* SECURITY UPDATE: denial of service and possible code execution via
EXIF tags.
- debian/patches/CVE-2012-0259.patch: don't copy invalid memory in
coders/tiff.c, properly initialize buffers in magick/property.c.
- CVE-2012-0259
- CVE-2012-1798
* SECURITY UPDATE: denial of service and possible code execution via
JPEG EXIF integer overflow.
- debian/patches/CVE-2012-1610.patch: check number of bytes in
magick/{profile,property}.c.
- CVE-2012-1610
Checksums-Sha1:
a8bdf6125bc6d7036804969df9efebe42a1f9e34 2528 imagemagick_6.5.7.8-1ubuntu1.2.dsc
4ae039e624da6ffa37b8cd9e6196012df859da1e 41927 imagemagick_6.5.7.8-1ubuntu1.2.diff.gz
Checksums-Sha256:
aaf4700839aa62808ab747f22ea4b4c32a07ac542b5a3f9232ac85f0afdbdbd2 2528 imagemagick_6.5.7.8-1ubuntu1.2.dsc
5c094dbf7e06dd92460b8ade167d41567cb6d945fb66bd96393c706e2f60256f 41927 imagemagick_6.5.7.8-1ubuntu1.2.diff.gz
Files:
598a9488e1eb2e2f177ab1f2062c595f 2528 graphics optional imagemagick_6.5.7.8-1ubuntu1.2.dsc
94cb21693f3ae53f813412923463e55c 41927 graphics optional imagemagick_6.5.7.8-1ubuntu1.2.diff.gz
Original-Maintainer: ImageMagick Packaging Team <pkg-gmagick-im-team at lists.alioth.debian.org>
More information about the Lucid-changes
mailing list