[ubuntu/cosmic-proposed] imagemagick 8:6.9.7.4+dfsg-16ubuntu9 (Accepted)

Marc Deslauriers marc.deslauriers at ubuntu.com
Tue Jul 10 15:20:14 UTC 2018 

imagemagick (8:6.9.7.4+dfsg-16ubuntu9) cosmic; urgency=medium

  * SECURITY UPDATE: out-of-bounds write in ReadBMPImage and WriteBMPImage
    - debian/patches/CVE-2018-12599.patch: use proper lengths in
      coders/bmp.c.
    - CVE-2018-12599
  * SECURITY UPDATE: out-of-bounds write in ReadDIBImage and WriteDIBImage
    - debian/patches/CVE-2018-12600.patch: use proper lengths in
      coders/dib.c.
    - CVE-2018-12600
  * SECURITY UPDATE: memory leak in XMagickCommand
    - debian/patches/CVE-2018-13153.patch: free memory in magick/animate.c.
    - CVE-2018-13153

Date: Tue, 10 Jul 2018 10:04:51 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/imagemagick/8:6.9.7.4+dfsg-16ubuntu9
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 10 Jul 2018 10:04:51 -0400
Source: imagemagick
Binary: imagemagick-6-common imagemagick-6-doc libmagickcore-6-headers libmagickwand-6-headers libmagick++-6-headers libimage-magick-perl libmagickcore-6-arch-config imagemagick-6.q16 libmagickcore-6.q16-3 libmagickcore-6.q16-3-extra libmagickcore-6.q16-dev libmagickwand-6.q16-3 libmagickwand-6.q16-dev libmagick++-6.q16-7 libmagick++-6.q16-dev libimage-magick-q16-perl imagemagick-6.q16hdri libmagickcore-6.q16hdri-3 libmagickcore-6.q16hdri-3-extra libmagickcore-6.q16hdri-dev libmagickwand-6.q16hdri-3 libmagickwand-6.q16hdri-dev libmagick++-6.q16hdri-7 libmagick++-6.q16hdri-dev libimage-magick-q16hdri-perl imagemagick-common imagemagick-doc perlmagick libmagickcore-dev libmagickwand-dev libmagick++-dev imagemagick
Architecture: source
Version: 8:6.9.7.4+dfsg-16ubuntu9
Distribution: cosmic
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
 imagemagick - image manipulation programs -- binaries
 imagemagick-6-common - image manipulation programs -- infrastructure
 imagemagick-6-doc - document files of ImageMagick
 imagemagick-6.q16 - image manipulation programs -- quantum depth Q16
 imagemagick-6.q16hdri - image manipulation programs -- quantum depth Q16HDRI
 imagemagick-common - image manipulation programs -- infrastructure dummy package
 imagemagick-doc - document files of ImageMagick -- dummy package
 libimage-magick-perl - Perl interface to the ImageMagick graphics routines
 libimage-magick-q16-perl - Perl interface to the ImageMagick graphics routines -- Q16 versio
 libimage-magick-q16hdri-perl - Perl interface to the ImageMagick graphics routines -- Q16HDRI ve
 libmagick++-6-headers - object-oriented C++ interface to ImageMagick - header files
 libmagick++-6.q16-7 - C++ interface to ImageMagick -- quantum depth Q16
 libmagick++-6.q16-dev - C++ interface to ImageMagick - development files (Q16)
 libmagick++-6.q16hdri-7 - C++ interface to ImageMagick -- quantum depth Q16HDRI
 libmagick++-6.q16hdri-dev - C++ interface to ImageMagick - development files (Q16HDRI)
 libmagick++-dev - object-oriented C++ interface to ImageMagick -- dummy package
 libmagickcore-6-arch-config - low-level image manipulation library - architecture header files
 libmagickcore-6-headers - low-level image manipulation library - header files
 libmagickcore-6.q16-3 - low-level image manipulation library -- quantum depth Q16
 libmagickcore-6.q16-3-extra - low-level image manipulation library - extra codecs (Q16)
 libmagickcore-6.q16-dev - low-level image manipulation library - development files (Q16)
 libmagickcore-6.q16hdri-3 - low-level image manipulation library -- quantum depth Q16HDRI
 libmagickcore-6.q16hdri-3-extra - low-level image manipulation library - extra codecs (Q16HDRI)
 libmagickcore-6.q16hdri-dev - low-level image manipulation library - development files (Q16HDRI
 libmagickcore-dev - low-level image manipulation library -- dummy package
 libmagickwand-6-headers - image manipulation library - headers files
 libmagickwand-6.q16-3 - image manipulation library -- quantum depth Q16
 libmagickwand-6.q16-dev - image manipulation library - development files (Q16)
 libmagickwand-6.q16hdri-3 - image manipulation library -- quantum depth Q16HDRI
 libmagickwand-6.q16hdri-dev - image manipulation library - development files (Q16HDRI)
 libmagickwand-dev - image manipulation library -- dummy package
 perlmagick - Perl interface to ImageMagick -- dummy package
Changes:
 imagemagick (8:6.9.7.4+dfsg-16ubuntu9) cosmic; urgency=medium
 .
   * SECURITY UPDATE: out-of-bounds write in ReadBMPImage and WriteBMPImage
     - debian/patches/CVE-2018-12599.patch: use proper lengths in
       coders/bmp.c.
     - CVE-2018-12599
   * SECURITY UPDATE: out-of-bounds write in ReadDIBImage and WriteDIBImage
     - debian/patches/CVE-2018-12600.patch: use proper lengths in
       coders/dib.c.
     - CVE-2018-12600
   * SECURITY UPDATE: memory leak in XMagickCommand
     - debian/patches/CVE-2018-13153.patch: free memory in magick/animate.c.
     - CVE-2018-13153
Checksums-Sha1:
 ad4450327a805711c4af4fac6752187ac4c6b1bb 5226 imagemagick_6.9.7.4+dfsg-16ubuntu9.dsc
 98109377fdc90d5eb893cfff5bc9ed59e61ac7e7 283380 imagemagick_6.9.7.4+dfsg-16ubuntu9.debian.tar.xz
 79e8f1417ef4a03d45a7ebc1ff6cebed922e6850 14534 imagemagick_6.9.7.4+dfsg-16ubuntu9_source.buildinfo
Checksums-Sha256:
 b7ff314f0275138b64cfd96eeb054b0d1310de1260b8ad2991ae74520a146362 5226 imagemagick_6.9.7.4+dfsg-16ubuntu9.dsc
 f6e8e714a5cab6ebb900586e5dabf05ad59740d86ec79d9ac99d9153fdea464c 283380 imagemagick_6.9.7.4+dfsg-16ubuntu9.debian.tar.xz
 39d3241d9e9540e3ee529302935405e49cf061f056361b3beef1e461dd45ea19 14534 imagemagick_6.9.7.4+dfsg-16ubuntu9_source.buildinfo
Files:
 72b367ece8e714eb784b3ffa2cf7b42c 5226 graphics optional imagemagick_6.9.7.4+dfsg-16ubuntu9.dsc
 12f601f7c6719425952b5b6baaab01da 283380 graphics optional imagemagick_6.9.7.4+dfsg-16ubuntu9.debian.tar.xz
 54165f6d0472d8cfa7b69b7e70a6bdb8 14534 graphics optional imagemagick_6.9.7.4+dfsg-16ubuntu9_source.buildinfo
Original-Maintainer: ImageMagick Packaging Team <pkg-gmagick-im-team at lists.alioth.debian.org>

-----BEGIN PGP SIGNATURE-----
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=lm7j
-----END PGP SIGNATURE-----

More information about the Cosmic-changes mailing list