[ubuntu/oneiric-security] imagemagick 8:6.6.0.4-3ubuntu1.1 (Accepted)
Marc Deslauriers
marc.deslauriers at ubuntu.com
Tue May 1 15:03:51 UTC 2012
imagemagick (8:6.6.0.4-3ubuntu1.1) oneiric-security; urgency=low
* SECURITY UPDATE: denial of service and possible code execution via
malformed ResolutionUnit or IOP tags.
- debian/patches/CVE-2012-0247.patch: properly calculate
lengths and sizes in magick/{profile,property}.c.
- CVE-2012-0247
- CVE-2012-0248
- CVE-2012-1185
- CVE-2012-1186
* SECURITY UPDATE: denial of service and possible code execution via
EXIF tags.
- debian/patches/CVE-2012-0259.patch: don't copy invalid memory in
coders/tiff.c, properly initialize buffers in magick/property.c.
- CVE-2012-0259
- CVE-2012-1798
* SECURITY UPDATE: denial of service and possible code execution via
JPEG EXIF integer overflow.
- debian/patches/CVE-2012-1610.patch: check number of bytes in
magick/{profile,property}.c.
- CVE-2012-1610
Date: Thu, 26 Apr 2012 09:54:47 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/oneiric/+source/imagemagick/8:6.6.0.4-3ubuntu1.1
-------------- next part --------------
Format: 1.8
Date: Thu, 26 Apr 2012 09:54:47 -0400
Source: imagemagick
Binary: imagemagick imagemagick-dbg imagemagick-doc libmagickcore3 libmagickcore3-extra libmagickcore-dev libmagickwand3 libmagickwand-dev libmagick++3 libmagick++-dev perlmagick
Architecture: source
Version: 8:6.6.0.4-3ubuntu1.1
Distribution: oneiric-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
imagemagick - image manipulation programs
imagemagick-dbg - debugging symbols for ImageMagick
imagemagick-doc - document files of ImageMagick
libmagick++-dev - object-oriented C++ interface to ImageMagick - development files
libmagick++3 - object-oriented C++ interface to ImageMagick
libmagickcore-dev - low-level image manipulation library - development files
libmagickcore3 - low-level image manipulation library
libmagickcore3-extra - low-level image manipulation library - extra codecs
libmagickwand-dev - image manipulation library - development files
libmagickwand3 - image manipulation library
perlmagick - Perl interface to the ImageMagick graphics routines
Changes:
imagemagick (8:6.6.0.4-3ubuntu1.1) oneiric-security; urgency=low
.
* SECURITY UPDATE: denial of service and possible code execution via
malformed ResolutionUnit or IOP tags.
- debian/patches/CVE-2012-0247.patch: properly calculate
lengths and sizes in magick/{profile,property}.c.
- CVE-2012-0247
- CVE-2012-0248
- CVE-2012-1185
- CVE-2012-1186
* SECURITY UPDATE: denial of service and possible code execution via
EXIF tags.
- debian/patches/CVE-2012-0259.patch: don't copy invalid memory in
coders/tiff.c, properly initialize buffers in magick/property.c.
- CVE-2012-0259
- CVE-2012-1798
* SECURITY UPDATE: denial of service and possible code execution via
JPEG EXIF integer overflow.
- debian/patches/CVE-2012-1610.patch: check number of bytes in
magick/{profile,property}.c.
- CVE-2012-1610
Checksums-Sha1:
919c6215e7833c83f276a1cd303e0fd3424ae5a8 2633 imagemagick_6.6.0.4-3ubuntu1.1.dsc
5769e6aecf8309b9f182fad3047ef0ee8cf67cc5 38012 imagemagick_6.6.0.4-3ubuntu1.1.debian.tar.bz2
Checksums-Sha256:
0141967af59c3bfb0b7d420aed2752744f368d47fbec271a18ef1212fdf89efa 2633 imagemagick_6.6.0.4-3ubuntu1.1.dsc
4540edf5185f5d3f874b5c2b2a6432989b8dfe90c2946e3d7ef552f58775d555 38012 imagemagick_6.6.0.4-3ubuntu1.1.debian.tar.bz2
Files:
51f374eef836ff1e8ed8175c958a29a7 2633 graphics optional imagemagick_6.6.0.4-3ubuntu1.1.dsc
986a956ed469873a5cfb01b1fb88715e 38012 graphics optional imagemagick_6.6.0.4-3ubuntu1.1.debian.tar.bz2
Original-Maintainer: ImageMagick Packaging Team <pkg-gmagick-im-team at lists.alioth.debian.org>
More information about the Oneiric-changes
mailing list