Ubuntu
imagemagick package

lp:ubuntu/lucid-updates/imagemagick

Lucid (10.04)
lucid-updates

Created by James Westby on 2010-12-07 and last modified on 2012-08-17

Get this branch:: bzr branch lp:ubuntu/lucid-updates/imagemagick

Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

No branches dependent on this one.

Related bugs

Link a bug report

Related blueprints

Branch information

Owner:: Ubuntu branches

Review team:: Ubuntu Development Team

Status:: Mature

Recent revisions

24. By Jamie Strandboge on 2012-08-17: * SECURITY UPDATE: denial of service via large resource consumption
  - debian/patches/CVE-2012-3437.patch: always use correct size argument
    with libpng memory allocation
  - CVE-2012-3437
23. By Marc Deslauriers on 2012-04-27: * SECURITY UPDATE: denial of service and possible code execution via
  malformed ResolutionUnit or IOP tags.
  - debian/patches/CVE-2012-0247.patch: properly calculate
    lengths and sizes in magick/{profile,property}.c.
  - CVE-2012-0247
  - CVE-2012-0248
  - CVE-2012-1185
  - CVE-2012-1186
* SECURITY UPDATE: denial of service and possible code execution via
  EXIF tags.
  - debian/patches/CVE-2012-0259.patch: don't copy invalid memory in
    coders/tiff.c, properly initialize buffers in magick/property.c.
  - CVE-2012-0259
  - CVE-2012-1798
* SECURITY UPDATE: denial of service and possible code execution via
  JPEG EXIF integer overflow.
  - debian/patches/CVE-2012-1610.patch: check number of bytes in
    magick/{profile,property}.c.
  - CVE-2012-1610
22. By Marc Deslauriers on 2010-12-02: * SECURITY UPDATE: arbitrary code execution via config files in the
  current directory.
  - debian/patches/CVE-2010-4167.patch: don't read config files from
    the current directory for the "installed" version.
  - CVE-2010-4167
21. By Luke Yelavich on 2009-11-26: * Merge from debian testing. Remaining changes:
- Don't build-dep on librsvg, it brings in excessive dependencies
- Don't build-dep on liblqr-1-0-dev, it is in universe
20. By Luke Yelavich on 2009-11-06: * Merge from debian testing, remaining changes:
- Don't build-dep on librsvg, it brings in excessive dependencies
- Don't build-dep on liblqr-1-0-dev, it is in universe
19. By Luke Yelavich on 2009-08-27: Drop liblqr-1-0-dev build dependency, as it is in universe.
18. By Harald Sitter on 2009-07-23: Make imagemagick suggest the -doc package, rather than recommend. Since
we install recommends by default -doc will end up in a Kubuntu installation.
17. By Muharem Hrnjadovic on 2009-06-04: * Merge from debian unstable, remaining changes:
  - (Build-)depend on libltdl7-dev instead of libltdl3-dev (the armel buildds
    currently have both available).
  - Don't build-dep on librsvg, it brings in excessive dependencies
16. By Jamie Strandboge on 2009-06-04: * SECURITY UPDATE: integer overflow via crafted TIFF image
  - debian/patches/CVE-2009-1882.patch: adjust xwindow.c, display.c and
    animate.c to verify width and length
  - CVE-2009-1882
15. By Jonathan Riddell on 2009-01-22: Don't build-dep on librsvg, it brings in excessive dependencies

Branch metadata

Branch format:: Branch format 7

Repository format:: Bazaar repository format 2a (needs bzr 1.16 or later)

Stacked on:: lp:ubuntu/natty/imagemagick

This branch contains Public information

Everyone can see this information.

Subscribers

Ubuntu branches

Ubuntuimagemagick package