[Sync request] Sync graphicsmagick (1.1.7-14) from Debian unstable (main)
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
graphicsmagick (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
Binary package hint: graphicsmagick
Please sync graphicsmagick (1.1.7-14) from Debian unstable (main).
The Ubuntu package has no changes.
The package builds cleanly in a feisty pbuilder.
Thanks.
Changelog:
graphicsmagick (1.1.7-14) unstable; urgency=high
* magick/image.c: Fix heap overflow in GrayscalePseudo
64bit architectures. (Turned up by Sami Liedes' segv2.viff test case.)
Closes: #418052, #416096
* magick/utility.h: Avoid double free() when calling MagickReallocMe
with zero size argument. (Triggered by Sami Liedes' segv2.viff test case.)
Closes: #418053
* coders/tiff.c: Fix segfault with certain TIFF images on amd64 due to
va_list reusal in bogus duplicate vsprintf() call. Thanks to Kurt
Roeckx for the fix. Closes: #415467
* coders/viff.c: Add sanity check to prevent heap overflow reading corrupt
viff images. (Triggered by Sami Liedes' segv.viff test case.)
Closes: #418054
* coders/xwd.c: Fix integer overflow in XWD coders. (Triggered by Sami
Liedes' broken.xwd test case.) Original patch thanks to Larry
Doolittle. Closes: #417862
-- Daniel Kobras <email address hidden> Fri, 6 Apr 2007 17:50:35 +0200
Changed in graphicsmagick: | |
status: | Unconfirmed → Confirmed |
[Updating] graphicsmagick (1.1.7-13 [Ubuntu] < 1.1.7-14 [Debian]) _1.1.7. orig.tar. gz: already in distro - downloading from librarian> _1.1.7- 14.diff. gz: downloading from http:// ftp.debian. org/debian/> _1.1.7- 14.dsc: downloading from http:// ftp.debian. org/debian/>
* Trying to add graphicsmagick...
- <graphicsmagick
- <graphicsmagick
- <graphicsmagick