FFe: sync/merge imagemagick form unstable
Bug #1923350 reported by
Matthias Klose
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
imagemagick (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
imagemagick is now in universe again, and wasn't merged / updated and only saw security updates since 2019. The package is mostly in sync with unstable, except for
- SECURITY UPDATE: code execution vulnerabilities in ghostscript as
invoked by imagemagick
- debian/
ghostscript handled types by default in policy.xml
- debian/
I kept that patch, but it's one of this kind which breaks package builds, as seen at
Debian #986686.
Package builds, test builds available at
https:/
CVE References
To post a comment you must log in.
It's late, but I think it's not good for us to have outdated packages indeed. Especially popular packages, even in universe. Let's proceed, but please keep an eye out on it and make sure it's all good before Final Freeze.