Ubuntu
imagemagick package

Branches for Edgy

Name Status Last Modified Last Commit
lp:ubuntu/edgy/imagemagick 1 Development 2009-07-03 19:29:57 UTC
8. * Non-Maintainer Upload * Fix buffer ...

Author: Don Armstrong
Revision Date: 2006-09-10 20:15:57 UTC

* Non-Maintainer Upload
* Fix buffer overflow in SGI parser [CVE-2006-4144] (closes: #383314)
  Thanks to Daniel Kobras
* Fix double free in ICC profile in PerlMagick (closes: #349264)
* Fix incomaptibility with graphviz >= 2.8 and build-depend on an
  appropriate version (closes: #360362)
* Fix XCF and Sun Raster File buffer overflows [CVE-2006-3743/-3744]
  (closes: #385062)
lp:ubuntu/edgy-security/imagemagick 1 Development 2009-07-03 19:30:02 UTC
12. * SECURITY UPDATE: multiple heap over...

Author: Kees Cook
Revision Date: 2007-10-02 14:19:08 UTC

* SECURITY UPDATE: multiple heap overflow vulnerabilities could lead
  to remote code execution.
* Thanks to Jonathan Smith and Daniel Kobras for backported patches:
  - magick/memory.c,magick/memory_.h,magick/methods.h: Add new allocator
    wrapper AcquireQuantumMemory() to prevent potential integer overflows.
    Backport from upstream version 6.3.5.9.
  - magick/image.c: Backport new implementation of SetImageExtent() from
    upstream version 6.3.5.9.
  - coders/dcm.c,coders/xcf.c: Fix integer overflow in DCM and XCF coders.
    (CVE-2007-4985) Backport of upstream patch from version 6.3.5.9.
  - coders/dcm.c,coders/dib.c,coders/xbm.c,coders/xcf.c,coders/xwd.c:
    Fix multiple integer overflows in DCM, DIB, XBM, XCF, and XWD coders.
    (CVE-2007-4986 and CVE-2007-4988) Based on upstream patch from
    version 6.3.5.9.
  - magick/blob.c: Fix fencepost error in ReadBlobString()
    (CVE-2007-4987) Backport of upstream patch from version 6.3.5.9.
  - coders/dib.c: Ensure positive value for image rows and columns.
    Based on upstream patch from version 6.3.5.9.
lp:ubuntu/edgy-updates/imagemagick 1 Development 2009-07-03 19:30:08 UTC
12. * SECURITY UPDATE: multiple heap over...

Author: Kees Cook
Revision Date: 2007-10-02 14:19:08 UTC

* SECURITY UPDATE: multiple heap overflow vulnerabilities could lead
  to remote code execution.
* Thanks to Jonathan Smith and Daniel Kobras for backported patches:
  - magick/memory.c,magick/memory_.h,magick/methods.h: Add new allocator
    wrapper AcquireQuantumMemory() to prevent potential integer overflows.
    Backport from upstream version 6.3.5.9.
  - magick/image.c: Backport new implementation of SetImageExtent() from
    upstream version 6.3.5.9.
  - coders/dcm.c,coders/xcf.c: Fix integer overflow in DCM and XCF coders.
    (CVE-2007-4985) Backport of upstream patch from version 6.3.5.9.
  - coders/dcm.c,coders/dib.c,coders/xbm.c,coders/xcf.c,coders/xwd.c:
    Fix multiple integer overflows in DCM, DIB, XBM, XCF, and XWD coders.
    (CVE-2007-4986 and CVE-2007-4988) Based on upstream patch from
    version 6.3.5.9.
  - magick/blob.c: Fix fencepost error in ReadBlobString()
    (CVE-2007-4987) Backport of upstream patch from version 6.3.5.9.
  - coders/dib.c: Ensure positive value for image rows and columns.
    Based on upstream patch from version 6.3.5.9.
13 of 3 results FirstPreviousNextLast