Ubuntu

“imagemagick” 7:6.5.7.8-1ubuntu1.2 source package in The Lucid Lynx

Publishing history

7:6.5.7.8-1ubuntu1.2
SUPERSEDED: Lucid pocket Updates in component main and section graphics
  • Superseded on 2012-08-22 by imagemagick - 7:6.5.7.8-1ubuntu1.3
  • Published on 2012-05-01
  • Copied from ubuntu lucid in Private PPA for Ubuntu Security Team
7:6.5.7.8-1ubuntu1.2
SUPERSEDED: Lucid pocket Security in component main and section graphics
  • Superseded on 2012-08-22 by imagemagick - 7:6.5.7.8-1ubuntu1.3
  • Published on 2012-05-01
  • Copied from ubuntu lucid in Private PPA for Ubuntu Security Team

Builds

Changelog

imagemagick (7:6.5.7.8-1ubuntu1.2) lucid-security; urgency=low

  * SECURITY UPDATE: denial of service and possible code execution via
    malformed ResolutionUnit or IOP tags.
    - debian/patches/CVE-2012-0247.patch: properly calculate
      lengths and sizes in magick/{profile,property}.c.
    - CVE-2012-0247
    - CVE-2012-0248
    - CVE-2012-1185
    - CVE-2012-1186
  * SECURITY UPDATE: denial of service and possible code execution via
    EXIF tags.
    - debian/patches/CVE-2012-0259.patch: don't copy invalid memory in
      coders/tiff.c, properly initialize buffers in magick/property.c.
    - CVE-2012-0259
    - CVE-2012-1798
  * SECURITY UPDATE: denial of service and possible code execution via
    JPEG EXIF integer overflow.
    - debian/patches/CVE-2012-1610.patch: check number of bytes in
      magick/{profile,property}.c.
    - CVE-2012-1610
 -- Marc Deslauriers <email address hidden>   Fri, 27 Apr 2012 15:41:13 -0400