imagemagick 7:6.2.4.5.dfsg1-0.14ubuntu0.2 source package in Ubuntu
Changelog
imagemagick (7:6.2.4.5.dfsg1-0.14ubuntu0.2) feisty-security; urgency=low
* SECURITY UPDATE: multiple heap overflow vulnerabilities could lead
to remote code execution.
* Thanks to Jonathan Smith and Daniel Kobras for backported patches:
- magick/memory.c,magick/memory_.h,magick/methods.h: Add new allocator
wrapper AcquireQuantumMemory() to prevent potential integer overflows.
Backport from upstream version 6.3.5.9.
- magick/image.c: Backport new implementation of SetImageExtent() from
upstream version 6.3.5.9.
- coders/dcm.c,coders/xcf.c: Fix integer overflow in DCM and XCF coders.
(CVE-2007-4985) Backport of upstream patch from version 6.3.5.9.
- coders/dcm.c,coders/dib.c,coders/xbm.c,coders/xcf.c,coders/xwd.c:
Fix multiple integer overflows in DCM, DIB, XBM, XCF, and XWD coders.
(CVE-2007-4986 and CVE-2007-4988) Based on upstream patch from
version 6.3.5.9.
- magick/blob.c: Fix fencepost error in ReadBlobString()
(CVE-2007-4987) Backport of upstream patch from version 6.3.5.9.
- coders/dib.c: Ensure positive value for image rows and columns.
Based on upstream patch from version 6.3.5.9.
-- Kees Cook <email address hidden> Tue, 02 Oct 2007 14:19:08 -0700
Upload details
- Uploaded by:
- Kees Cook
- Uploaded to:
- Feisty
- Original maintainer:
- Ubuntu Development Team
- Architectures:
- any
- Section:
- graphics
- Urgency:
- Low Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| imagemagick_6.2.4.5.dfsg1.orig.tar.gz | 5.0 MiB | 1f32b4bd12ace81ed9d989b96191382e24991d068ced6a1862c0dd4bdae68c3a |
| imagemagick_6.2.4.5.dfsg1-0.14ubuntu0.2.diff.gz | 93.8 KiB | 5d9f9e2707c49de03ff986d03b15c83113b292e7ae612267a3f5bbae59108bb0 |
| imagemagick_6.2.4.5.dfsg1-0.14ubuntu0.2.dsc | 1.1 KiB | ca26ecbaabcf9a9166ad880f8ea7e7bbc690b1df7b08dd46f9caa3033b9d106e |
Binary packages built by this source
- imagemagick: No summary available for imagemagick in ubuntu feisty.
No description available for imagemagick in ubuntu feisty.
- libmagick++9-dev: No summary available for libmagick++9-dev in ubuntu feisty.
No description available for libmagick++9-dev in ubuntu feisty.
- libmagick++9c2a: No summary available for libmagick++9c2a in ubuntu feisty.
No description available for libmagick++9c2a in ubuntu feisty.
- libmagick9: No summary available for libmagick9 in ubuntu feisty.
No description available for libmagick9 in ubuntu feisty.
- libmagick9-dev: No summary available for libmagick9-dev in ubuntu feisty.
No description available for libmagick9-dev in ubuntu feisty.
- perlmagick: No summary available for perlmagick in ubuntu feisty.
No description available for perlmagick in ubuntu feisty.
