[ubuntu/precise-security] imagemagick 8:6.6.9.7-5ubuntu3.3 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Thu Mar 6 19:34:01 UTC 2014
imagemagick (8:6.6.9.7-5ubuntu3.3) precise-security; urgency=medium
* SECURITY UPDATE: denial of service and possible code execution via psd
images processing rle decoding buffer overflow
- debian/patches/CVE-2014-1958.patch: check lengths in coders/psd.c.
- CVE-2014-1958
* SECURITY UPDATE: denial of service via jpeg images with specially-
crafted restart markers
- debian/patches/CVE-2014-2030.patch: don't overflow layer_name in
coders/psd.c.
- CVE-2014-2030
* SECURITY UPDATE: denial of service via crafted sequence of restart
markers
- debian/patches/CVE-2012-0260.patch: limit number of warnings in
coders/jpeg.c.
- CVE-2012-0260
Date: 2014-03-06 17:40:24.239337+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/precise/+source/imagemagick/8:6.6.9.7-5ubuntu3.3
-------------- next part --------------
Sorry, changesfile not available.
More information about the Precise-changes
mailing list