-
imagemagick (7:6.5.7.8-1ubuntu1.3) lucid-security; urgency=low
* SECURITY UPDATE: denial of service via large resource consumption
- debian/patches/CVE-2012-3437.patch: always use correct size argument
with libpng memory allocation
- CVE-2012-3437
-- Jamie Strandboge <email address hidden> Fri, 17 Aug 2012 09:59:07 -0500
-
imagemagick (7:6.5.7.8-1ubuntu1.2) lucid-security; urgency=low
* SECURITY UPDATE: denial of service and possible code execution via
malformed ResolutionUnit or IOP tags.
- debian/patches/CVE-2012-0247.patch: properly calculate
lengths and sizes in magick/{profile,property}.c.
- CVE-2012-0247
- CVE-2012-0248
- CVE-2012-1185
- CVE-2012-1186
* SECURITY UPDATE: denial of service and possible code execution via
EXIF tags.
- debian/patches/CVE-2012-0259.patch: don't copy invalid memory in
coders/tiff.c, properly initialize buffers in magick/property.c.
- CVE-2012-0259
- CVE-2012-1798
* SECURITY UPDATE: denial of service and possible code execution via
JPEG EXIF integer overflow.
- debian/patches/CVE-2012-1610.patch: check number of bytes in
magick/{profile,property}.c.
- CVE-2012-1610
-- Marc Deslauriers <email address hidden> Fri, 27 Apr 2012 15:41:13 -0400
-
imagemagick (7:6.5.7.8-1ubuntu1.1) lucid-security; urgency=low
* SECURITY UPDATE: arbitrary code execution via config files in the
current directory.
- debian/patches/CVE-2010-4167.patch: don't read config files from
the current directory for the "installed" version.
- CVE-2010-4167
-- Marc Deslauriers <email address hidden> Thu, 02 Dec 2010 10:07:56 -0500
-
imagemagick (7:6.5.7.8-1ubuntu1) lucid; urgency=low
* Merge from debian testing. Remaining changes:
- Don't build-dep on librsvg, it brings in excessive dependencies
- Don't build-dep on liblqr-1-0-dev, it is in universe
imagemagick (7:6.5.7.8-1) unstable; urgency=low
* New upstream release;
* Fix recommends on libmagickcore2-extra (Closes: #556360);
* Fix versioned dependency on libmagick* libs (Closes: #556740).
imagemagick (7:6.5.7.7-1) unstable; urgency=low
* New upstream release;
- Fixes "perferred" typos (Closes: #550503). Thanks A. Costa!
- Patch to fix FTBFS on hurd-i386 has been merged upstream
(Closes: #551017). Thanks Pino Toscano!
* Upload to unstable.
-- Luke Yelavich <email address hidden> Fri, 27 Nov 2009 09:32:04 +1100
-
imagemagick (7:6.5.5.3-1ubuntu1) lucid; urgency=low
* Merge from debian testing, remaining changes:
- Don't build-dep on librsvg, it brings in excessive dependencies
- Don't build-dep on liblqr-1-0-dev, it is in universe
imagemagick (7:6.5.5.3-1) unstable; urgency=low
* New upstream release;
* Removed SA35216.diff as it was fixed upstream;
* The imagemagick package now suggests imagemagick-doc (Closes: #523401);
* "identify -verbose" now displays EXIF thumbnail info (Closes: #527918);
* Fix image placing when displaying to the X server root (Closes: #523608);
* Fix wrong exit code in display (Closes: #524058);
* Fix loading of MS Windows icons with compressed PNG elements
(Closes: #534159);
* Fix requirement of an X server for running display (Closes: #533494);
* Fix title misplacing with montage (Closes: #528569);
* Fix filetype detection with mogrify (Closes: #531350);
* Fix image loop with "display -delay" (Closes: #529702);
* Fix crashing on non-image XML files with identify (Closes: #533704);
* Add debian/README.source;
* debian/control: updated libltdl-dev dependency;
* debian/rules:
- updated build process for PerlMagick;
- empties dependency_libs from *.la files.
* Updated Standards-Version:
- disable tests when nocheck is present.
-- Luke Yelavich <email address hidden> Fri, 06 Nov 2009 17:18:57 +1100
-
imagemagick (7:6.5.1.0-1.1ubuntu3) karmic; urgency=low
* Drop liblqr-1-0-dev build dependency, as it is in universe.
-- Luke Yelavich <email address hidden> Thu, 27 Aug 2009 16:06:49 +1000
