Ubuntu
imagemagick package

imagemagick 7:6.2.4.5.dfsg1-0.10ubuntu0.4 source package in Ubuntu

Changelog

imagemagick (7:6.2.4.5.dfsg1-0.10ubuntu0.4) edgy-security; urgency=low

  * SECURITY UPDATE: multiple heap overflow vulnerabilities could lead
    to remote code execution.
  * Thanks to Jonathan Smith and Daniel Kobras for backported patches:
    - magick/memory.c,magick/memory_.h,magick/methods.h: Add new allocator
      wrapper AcquireQuantumMemory() to prevent potential integer overflows.
      Backport from upstream version 6.3.5.9.
    - magick/image.c: Backport new implementation of SetImageExtent() from
      upstream version 6.3.5.9.
    - coders/dcm.c,coders/xcf.c: Fix integer overflow in DCM and XCF coders.
      (CVE-2007-4985) Backport of upstream patch from version 6.3.5.9.
    - coders/dcm.c,coders/dib.c,coders/xbm.c,coders/xcf.c,coders/xwd.c:
      Fix multiple integer overflows in DCM, DIB, XBM, XCF, and XWD coders.
      (CVE-2007-4986 and CVE-2007-4988) Based on upstream patch from
      version 6.3.5.9.
    - magick/blob.c: Fix fencepost error in ReadBlobString()
      (CVE-2007-4987) Backport of upstream patch from version 6.3.5.9.
    - coders/dib.c: Ensure positive value for image rows and columns.
      Based on upstream patch from version 6.3.5.9.

 -- Kees Cook <email address hidden>   Tue, 02 Oct 2007 14:19:08 -0700

Upload details

Uploaded by:
Kees Cook
Uploaded to:
Edgy
Original maintainer:
Ryuichi Arafune
Architectures:
any
Section:
graphics
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
imagemagick_6.2.4.5.dfsg1.orig.tar.gz 5.0 MiB 1f32b4bd12ace81ed9d989b96191382e24991d068ced6a1862c0dd4bdae68c3a
imagemagick_6.2.4.5.dfsg1-0.10ubuntu0.4.diff.gz 91.9 KiB cc55cd9d82382472eaa9daeac4da6016172540141c9e0ab7a3a8ab37df0e5a71
imagemagick_6.2.4.5.dfsg1-0.10ubuntu0.4.dsc 953 bytes 6b0eac2a6f95339e1afbc00445850e09cd5e9407e9ee3ed8fd5db8a8fe906978

View changes file

Binary packages built by this source

imagemagick: No summary available for imagemagick in ubuntu edgy.

No description available for imagemagick in ubuntu edgy.

libmagick++9-dev: No summary available for libmagick++9-dev in ubuntu edgy.

No description available for libmagick++9-dev in ubuntu edgy.

libmagick++9c2a: No summary available for libmagick++9c2a in ubuntu edgy.

No description available for libmagick++9c2a in ubuntu edgy.

libmagick9: No summary available for libmagick9 in ubuntu edgy.

No description available for libmagick9 in ubuntu edgy.

libmagick9-dev: No summary available for libmagick9-dev in ubuntu edgy.

No description available for libmagick9-dev in ubuntu edgy.

perlmagick: No summary available for perlmagick in ubuntu edgy.

No description available for perlmagick in ubuntu edgy.