Ubuntu

“imagemagick” 8:6.6.9.7-5ubuntu3.1 source package in The Precise Pangolin

Publishing history

8:6.6.9.7-5ubuntu3.1
SUPERSEDED: Precise pocket Updates in component main and section graphics
  • Removed from disk on 2012-08-23.
  • Removal requested on 2012-08-23.
  • Superseded on 2012-08-22 by imagemagick - 8:6.6.9.7-5ubuntu3.2
  • Published on 2012-05-02
  • Copied from ubuntu precise in Private PPA for Ubuntu Security Team
8:6.6.9.7-5ubuntu3.1
SUPERSEDED: Precise pocket Security in component main and section graphics
  • Removed from disk on 2012-08-23.
  • Removal requested on 2012-08-23.
  • Superseded on 2012-08-22 by imagemagick - 8:6.6.9.7-5ubuntu3.2
  • Published on 2012-05-01
  • Copied from ubuntu precise in Private PPA for Ubuntu Security Team

Builds

Changelog

imagemagick (8:6.6.9.7-5ubuntu3.1) precise-security; urgency=low

  * SECURITY UPDATE: denial of service and possible code execution via
    malformed ResolutionUnit or IOP tags.
    - debian/patches/CVE-2012-0247.patch: properly calculate
      lengths and sizes in magick/{profile,property}.c.
    - CVE-2012-0247
    - CVE-2012-0248
    - CVE-2012-1185
    - CVE-2012-1186
  * SECURITY UPDATE: denial of service and possible code execution via
    EXIF tags.
    - debian/patches/CVE-2012-0259.patch: don't copy invalid memory in
      coders/tiff.c, properly initialize buffers in magick/property.c.
    - CVE-2012-0259
    - CVE-2012-1798
  * SECURITY UPDATE: denial of service and possible code execution via
    JPEG EXIF integer overflow.
    - debian/patches/CVE-2012-1610.patch: check number of bytes in
      magick/{profile,property}.c.
    - CVE-2012-1610
 -- Marc Deslauriers <email address hidden>   Wed, 25 Apr 2012 10:22:49 -0400