[ubuntu/natty-security] imagemagick 7:6.6.2.6-1ubuntu4.1 (Accepted)
Marc Deslauriers
marc.deslauriers at ubuntu.com
Tue May 1 15:04:07 UTC 2012
imagemagick (7:6.6.2.6-1ubuntu4.1) natty-security; urgency=low
* SECURITY UPDATE: denial of service and possible code execution via
malformed ResolutionUnit or IOP tags.
- debian/patches/CVE-2012-0247.patch: properly calculate
lengths and sizes in magick/{profile,property}.c.
- CVE-2012-0247
- CVE-2012-0248
- CVE-2012-1185
- CVE-2012-1186
* SECURITY UPDATE: denial of service and possible code execution via
EXIF tags.
- debian/patches/CVE-2012-0259.patch: don't copy invalid memory in
coders/tiff.c, properly initialize buffers in magick/property.c.
- CVE-2012-0259
- CVE-2012-1798
* SECURITY UPDATE: denial of service and possible code execution via
JPEG EXIF integer overflow.
- debian/patches/CVE-2012-1610.patch: check number of bytes in
magick/{profile,property}.c.
- CVE-2012-1610
Date: Fri, 27 Apr 2012 09:22:11 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/natty/+source/imagemagick/7:6.6.2.6-1ubuntu4.1
-------------- next part --------------
Format: 1.8
Date: Fri, 27 Apr 2012 09:22:11 -0400
Source: imagemagick
Binary: imagemagick imagemagick-dbg imagemagick-doc libmagickcore3 libmagickcore3-extra libmagickcore-dev libmagickwand3 libmagickwand-dev libmagick++3 libmagick++-dev perlmagick
Architecture: source
Version: 7:6.6.2.6-1ubuntu4.1
Distribution: natty-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
imagemagick - image manipulation programs
imagemagick-dbg - debugging symbols for ImageMagick
imagemagick-doc - document files of ImageMagick
libmagick++-dev - object-oriented C++ interface to ImageMagick - development files
libmagick++3 - object-oriented C++ interface to ImageMagick
libmagickcore-dev - low-level image manipulation library - development files
libmagickcore3 - low-level image manipulation library
libmagickcore3-extra - low-level image manipulation library - extra codecs
libmagickwand-dev - image manipulation library - development files
libmagickwand3 - image manipulation library
perlmagick - Perl interface to the ImageMagick graphics routines
Changes:
imagemagick (7:6.6.2.6-1ubuntu4.1) natty-security; urgency=low
.
* SECURITY UPDATE: denial of service and possible code execution via
malformed ResolutionUnit or IOP tags.
- debian/patches/CVE-2012-0247.patch: properly calculate
lengths and sizes in magick/{profile,property}.c.
- CVE-2012-0247
- CVE-2012-0248
- CVE-2012-1185
- CVE-2012-1186
* SECURITY UPDATE: denial of service and possible code execution via
EXIF tags.
- debian/patches/CVE-2012-0259.patch: don't copy invalid memory in
coders/tiff.c, properly initialize buffers in magick/property.c.
- CVE-2012-0259
- CVE-2012-1798
* SECURITY UPDATE: denial of service and possible code execution via
JPEG EXIF integer overflow.
- debian/patches/CVE-2012-1610.patch: check number of bytes in
magick/{profile,property}.c.
- CVE-2012-1610
Checksums-Sha1:
782795a99a1141db0df6a37a3b88a516f41a913d 2633 imagemagick_6.6.2.6-1ubuntu4.1.dsc
3b1a810ed9990c50aab96efef8f8abd980baae74 37685 imagemagick_6.6.2.6-1ubuntu4.1.debian.tar.bz2
Checksums-Sha256:
abd742f81330d60713ff51b784287a7efc5dec52cde6eaa0185a3bb2171b6a1c 2633 imagemagick_6.6.2.6-1ubuntu4.1.dsc
57bd00e074f4e19d0424a8e92808e995c18f87f77eac46be50b51a72dea64905 37685 imagemagick_6.6.2.6-1ubuntu4.1.debian.tar.bz2
Files:
74f3fca2cf4ab160588fc0c3c861dd46 2633 graphics optional imagemagick_6.6.2.6-1ubuntu4.1.dsc
5e704de0ebb45e1bd4eff9d08f5808bd 37685 graphics optional imagemagick_6.6.2.6-1ubuntu4.1.debian.tar.bz2
Original-Maintainer: ImageMagick Packaging Team <pkg-gmagick-im-team at lists.alioth.debian.org>
More information about the Natty-changes
mailing list