[ubuntu/eoan-proposed] graphicsmagick 1.4+really1.3.33+hg16115-1 (Accepted)
Jeremy Bicha
jeremy at bicha.net
Thu Oct 3 10:58:27 UTC 2019
graphicsmagick (1.4+really1.3.33+hg16115-1) unstable; urgency=high
* Mercurial snapshot, fixing the following security issues:
- ReadMNGImage(): skip coalescing layers if there is only one layer,
- DrawStrokePolygon(): handle case where TraceStrokePolygon() returns
NULL,
- DrawDashPolygon(): handle case where DrawStrokePolygon() returns
MagickFail,
- TraceBezier(): detect arithmetic overflow and return errors via
normal error path rather than exiting,
- ExtractTokensBetweenPushPop(): fix non-terminal parsing loop,
- GenerateEXIFAttribute(): check that we are not being directed to read
an IFD that we are already parsing and quit in order to avoid a loop,
- ReallocColormap(): avoid dereferencing a NULL pointer if
image->colormap is NULL,
- png_read_raw_profile(): fix validation of raw profile length,
- TraceArcPath(): substitute a lineto command when tracing arc is
impossible,
- GenerateEXIFAttribute(): skip unsupported/invalid format 0.
Date: 2019-09-28 22:34:02.208905+00:00
Changed-By: Laszlo Boszormenyi <gcs at debian.org>
Signed-By: Jeremy Bicha <jeremy at bicha.net>
https://launchpad.net/ubuntu/+source/graphicsmagick/1.4+really1.3.33+hg16115-1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Eoan-changes
mailing list