[Bug 1044479] [NEW] Sync graphicsmagick 1.3.16-1.1 (universe) from Debian unstable (main)

[Logan Rosen]

*** This bug is a security vulnerability ***

Public security bug reported:

Please sync graphicsmagick 1.3.16-1.1 (universe) from Debian unstable
(main)

Changelog entries since current quantal version 1.3.16-1:

graphicsmagick (1.3.16-1.1) unstable; urgency=low

  * Non-maintainer upload.
  * [SECURITY] Fix "CVE-2012-3438": apply patch from upstream repo:
    http://graphicsmagick.hg.sourceforge.net/hgweb/graphicsmagick/graphicsmagick/rev/d6e469d02cd2
    "coders/png.c: Some typecasts were inconsistent with libpng-1.4 and
    later."
    (Closes: #683284)

 -- gregor herrmann <gregoa at debian.org>  Sat, 18 Aug 2012 15:08:57 +0200

** Affects: graphicsmagick (Ubuntu)
     Importance: Undecided
         Status: New

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2012-3438

** This bug has been flagged as a security vulnerability

-- 
You received this bug notification because you are a member of Ubuntu
Sponsors Team, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/1044479

Title:
  Sync graphicsmagick 1.3.16-1.1 (universe) from Debian unstable (main)

Status in “graphicsmagick” package in Ubuntu:
  New

Bug description:
  Please sync graphicsmagick 1.3.16-1.1 (universe) from Debian unstable
  (main)

  Changelog entries since current quantal version 1.3.16-1:

  graphicsmagick (1.3.16-1.1) unstable; urgency=low

    * Non-maintainer upload.
    * [SECURITY] Fix "CVE-2012-3438": apply patch from upstream repo:
      http://graphicsmagick.hg.sourceforge.net/hgweb/graphicsmagick/graphicsmagick/rev/d6e469d02cd2
      "coders/png.c: Some typecasts were inconsistent with libpng-1.4 and
      later."
      (Closes: #683284)

   -- gregor herrmann <gregoa at debian.org>  Sat, 18 Aug 2012 15:08:57
  +0200

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/graphicsmagick/+bug/1044479/+subscriptions