Ubuntu
imagemagick package

imagemagick 8:6.9.10.23+dfsg-2.1ubuntu3 broke reverse-deps

Bug #1839596 reported by Gianfranco Costamagna
8
This bug affects 1 person
Affects Status Importance Assigned to Milestone
imagemagick (Ubuntu)
Fix Released
Critical
Marc Deslauriers
Bionic
Won't Fix
Critical
Marc Deslauriers
Disco
Won't Fix
Critical
Marc Deslauriers
Eoan
Won't Fix
Critical
Marc Deslauriers

Bug Description

Hello, this change:
http://launchpadlibrarian.net/429710949/imagemagick_8%3A6.9.10.23+dfsg-2.1ubuntu2_8%3A6.9.10.23+dfsg-2.1ubuntu3.diff.gz

disabled the PDF generation from convert tool, breaking some reverse-dependencies such as mlpost and kannel

sed -e 's/all/circle/' customdoc/all.template > img/circle.tex
cd img && latex -interaction nonstopmode -file-line-error -halt-on-error circle > /dev/null
cd img && dvips -q -E circle.dvi -o
convert img/circle.ps img/circle.png
+ convert img/circle.ps img/circle.png
convert-im6.q16: attempt to perform an operation not allowed by the security policy `PS' @ error/constitute.c/IsCoderAuthorized/408.
convert-im6.q16: no images defined `img/circle.png' @ error/convert.c/ConvertImageCommand/3258.
Command exited with code 1.
make[2]: *** [ocamlbuild.Makefile:199: doc] Error 10

please fix it up, or revert the change, because tools in the archive are relying on this tool to do file conversion...

thanks

See original description
Revision history for this message
Gianfranco Costamagna (costamagnagianfranco) wrote :

Assigning it to Marc

Changed in imagemagick (Ubuntu):
assignee: Ubuntu Security Team (ubuntu-security) → Marc Deslauriers (mdeslaur)
tags: added: securi
tags: removed: securi
Gianfranco Costamagna (costamagnagianfranco)
description: updated
Revision history for this message
Gianfranco Costamagna (costamagnagianfranco) wrote :

I'm uploading the revert, it won't migrate because of missing mir dependency, but at least it will make the bug go away and other transitions finish.

tags: added: block-proposed
Changed in imagemagick (Ubuntu):
importance: High → Critical
Revision history for this message
Gianfranco Costamagna (costamagnagianfranco) wrote :

and now we have broken bionic cosmic and disco...

Changed in imagemagick (Ubuntu Disco):
status: New → Confirmed
Changed in imagemagick (Ubuntu Bionic):
status: New → Confirmed
Changed in imagemagick (Ubuntu Disco):
importance: Undecided → Critical
Changed in imagemagick (Ubuntu Bionic):
importance: Undecided → Critical
assignee: nobody → Marc Deslauriers (mdeslaur)
Changed in imagemagick (Ubuntu Disco):
assignee: nobody → Marc Deslauriers (mdeslaur)
Revision history for this message
Marc Deslauriers (mdeslaur) wrote :

We will not be reverting this. The security team does not wish for pdf support in imagemagick to be enabled by default.

The best approach here is to disable the pdf generation in the two packages that now break because of this change.

Changed in imagemagick (Ubuntu Bionic):
status: Confirmed → Won't Fix
Changed in imagemagick (Ubuntu Disco):
status: Confirmed → Won't Fix
Changed in imagemagick (Ubuntu Eoan):
status: Confirmed → Won't Fix
Changed in imagemagick (Ubuntu):
status: Confirmed → Won't Fix
Revision history for this message
Marc Deslauriers (mdeslaur) wrote :

I will certainly help fix any packages that FTBFS because of this change, please feel free to assign me to bugs about them.

Revision history for this message
Gianfranco Costamagna (costamagnagianfranco) wrote :

@Marc, I didn't see changes in mlpost... I suspect now that I reverted the revert, it will FTBFS again

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package imagemagick - 8:6.9.10.23+dfsg-2.1ubuntu8

---------------
imagemagick (8:6.9.10.23+dfsg-2.1ubuntu8) focal; urgency=medium

  * Build without libheif, to untangle the perl transition.

 -- Matthias Klose <email address hidden> Mon, 21 Oct 2019 16:41:25 +0200

Changed in imagemagick (Ubuntu):
status: Won't Fix → Fix Released
Mathew Hodson (mhodson)
tags: added: regression-update
removed: regression-release
tags: removed: block-proposed
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.