[ubuntu/precise-security] imagemagick 8:6.6.9.7-5ubuntu3.3 (Accepted)

Marc Deslauriers marc.deslauriers at canonical.com
Thu Mar 6 19:34:01 UTC 2014


imagemagick (8:6.6.9.7-5ubuntu3.3) precise-security; urgency=medium

  * SECURITY UPDATE: denial of service and possible code execution via psd
    images processing rle decoding buffer overflow
    - debian/patches/CVE-2014-1958.patch: check lengths in coders/psd.c.
    - CVE-2014-1958
  * SECURITY UPDATE: denial of service via jpeg images with specially-
    crafted restart markers
    - debian/patches/CVE-2014-2030.patch: don't overflow layer_name in
      coders/psd.c.
    - CVE-2014-2030
  * SECURITY UPDATE: denial of service via crafted sequence of restart
    markers
    - debian/patches/CVE-2012-0260.patch: limit number of warnings in
      coders/jpeg.c.
    - CVE-2012-0260

Date: 2014-03-06 17:40:24.239337+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/precise/+source/imagemagick/8:6.6.9.7-5ubuntu3.3
-------------- next part --------------
Sorry, changesfile not available.


More information about the Precise-changes mailing list