Format: 1.8
Date: Fri, 28 Sep 2018 11:19:54 -0700
Source: imagemagick
Binary: imagemagick-common imagemagick-doc libmagickcore-6-headers libmagickwand-6-headers libmagick++-6-headers imagemagick libimage-magick-perl libmagickcore-6-arch-config imagemagick-6.q16 libmagickcore-6.q16-2 libmagickcore-6.q16-2-extra libmagickcore-6.q16-dev libmagickwand-6.q16-2 libmagickwand-6.q16-dev libmagick++-6.q16-5v5 libmagick++-6.q16-dev imagemagick-dbg libimage-magick-q16-perl perlmagick libmagickcore-dev libmagickwand-dev libmagick++-dev
Architecture: i386
Version: 8:6.8.9.9-7ubuntu5.13
Distribution: xenial
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@lgw01-amd64-031.buildd>
Changed-By: Steve Beattie <sbeattie@ubuntu.com>
Description:
 imagemagick - image manipulation programs -- binaries
 imagemagick-6.q16 - image manipulation programs -- quantum depth Q16
 imagemagick-common - image manipulation programs -- infrastructure
 imagemagick-dbg - debugging symbols for ImageMagick
 imagemagick-doc - document files of ImageMagick
 libimage-magick-perl - Perl interface to the ImageMagick graphics routines
 libimage-magick-q16-perl - Perl interface to the ImageMagick graphics routines -- Q16 versio
 libmagick++-6-headers - object-oriented C++ interface to ImageMagick - header files
 libmagick++-6.q16-5v5 - object-oriented C++ interface to ImageMagick
 libmagick++-6.q16-dev - object-oriented C++ interface to ImageMagick - development files
 libmagick++-dev - object-oriented C++ interface to ImageMagick
 libmagickcore-6-arch-config - low-level image manipulation library - architecture header files
 libmagickcore-6-headers - low-level image manipulation library - header files
 libmagickcore-6.q16-2 - low-level image manipulation library -- quantum depth Q16
 libmagickcore-6.q16-2-extra - low-level image manipulation library - extra codecs (Q16)
 libmagickcore-6.q16-dev - low-level image manipulation library - development files (Q16)
 libmagickcore-dev - low-level image manipulation library -- transition package
 libmagickwand-6-headers - image manipulation library - headers files
 libmagickwand-6.q16-2 - image manipulation library
 libmagickwand-6.q16-dev - image manipulation library - development files
 libmagickwand-dev - image manipulation library - transition for development files
 perlmagick - Perl interface to ImageMagick -- transition package
Launchpad-Bugs-Fixed: 1793485
Changes:
 imagemagick (8:6.8.9.9-7ubuntu5.13) xenial-security; urgency=medium
 .
   [ Steve Beattie ]
   * SECURITY UPDATE: code execution vulnerabilities in ghostscript as
     invoked by imagemagick
     - debian/patches/200-disable-ghostscript-formats.patch: disable
       ghostscript handled types by default in policy.xml
   * SECURITY UPDATE: information leak in ReadXBMImage
     - debian/patches/CVE-2018-16323.patch: don't leave data
       uninitialized with negative pixels
     - CVE-2018-16323
   * SECURITY UPDATE: memory leak of colormap in WriteMPCImage
     - debian/patches/CVE-2018-14434.patch: free colormap on bad
       color depth
     - CVE-2018-14434
   * SECURITY UPDATE: memory leak in DecodeImage
     - debian/patches/CVE-2018-14435.patch: free memory when given a
       bad plane
     - CVE-2018-14435
   * SECURITY UPDATE: memory leak in ReadMIFFImage
     - debian/patches/CVE-2018-14436.patch: free memory when given a
       bad depth
     - CVE-2018-14436
   * SECURITY UPDATE: memory leak in parse8BIM
     - debian/patches/CVE-2018-14437-prereq.patch: check for negative
       values
     - debian/patches/CVE-2018-14437.patch: free strings in error
       conditions
     - CVE-2018-14437
   * SECURITY UPDATE: memory leak in ReadOneJNGImage
     - debian/patches/CVE-2018-16640-prereq-1.patch: define DestroyJNG()
     - debian/patches/CVE-2018-16640-prereq-2.patch: fix DestroyJNG()
     - debian/patches/CVE-2018-16640.patch: free memory on error
     - CVE-2018-16640
   * SECURITY UPDATE: denial of service due to out-of-bounds write
     in InsertRow
     - debian/patches/CVE-2018-16642.patch: improve checking for errors
     - CVE-2018-16642
   * SECURITY UPDATE: denial of service due to missing fputc checks
     - debian/patches/CVE-2018-16643.patch: check fputc calls for error
     - CVE-2018-16643
   * SECURITY UPDATE: denial of service in ReadDCMImage and
     ReadPICTImage
     - debian/patches/CVE-2018-16644-prereq-1.patch: check for EOF
       when reading from file
     - debian/patches/CVE-2018-16644-prereq-2.patch: define
       ThrowPICTException() macro and use it
     - debian/patches/CVE-2018-16644-1.patch,
       debian/patches/CVE-2018-16644-2.patch: check for invalid length
     - CVE-2018-16644
   * SECURITY UPDATE: excessive memory allocation issue in ReadBMPImage
     - debian/patches/CVE-2018-16645.patch: ensure number_colors is
       not too large
     - CVE-2018-16645
   * SECURITY UPDATE: denial of service in ReadOneJNGImage
     - debian/patches/CVE-2018-16749.patch; check for NULL color_image
     - CVE-2018-16749
   * SECURITY UPDATE: memory leak in formatIPTCfromBuffer
     - debian/patches/CVE-2018-16750.patch: free memory on error
     - CVE-2018-16750
 .
   [ Marc Deslauriers ]
   * SECURITY REGRESSION: segfault in png to gif conversion (LP: #1793485)
     - debian/patches/0261-CVE-2017-13144.patch: removed pending
       further investigation.
     - debian/patches/CVE-2017-12430.patch: refreshed.
Checksums-Sha1:
 c56bf211917ad0a1e409542af641ab27d2f6b853 1206 imagemagick-6.q16-dbgsym_6.8.9.9-7ubuntu5.13_i386.ddeb
 2cc8f8285a815220551af2ea3bd03b17e3707815 386962 imagemagick-6.q16_6.8.9.9-7ubuntu5.13_i386.deb
 7ad539e4d280b5a02736ac1944bbd11ea0384522 5497838 imagemagick-dbg_6.8.9.9-7ubuntu5.13_i386.deb
 b164f9e9ea55249daacd24900d9358696cfadfb4 1206 imagemagick-dbgsym_6.8.9.9-7ubuntu5.13_i386.ddeb
 7232c6d8fcaa1f7f4fd71a7ede9452628f5eb57f 44830 imagemagick_6.8.9.9-7ubuntu5.13_i386.deb
 dd5053834f0b7f42820add2d3cf460aa0d97b0dc 988 libimage-magick-q16-perl-dbgsym_6.8.9.9-7ubuntu5.13_i386.ddeb
 f05334d0a7ed8bfd4d1cb28ac92920eeba324e7e 125336 libimage-magick-q16-perl_6.8.9.9-7ubuntu5.13_i386.deb
 e68920d94819d874a04dfb22845bf88b95260dfb 1000 libmagick++-6.q16-5v5-dbgsym_6.8.9.9-7ubuntu5.13_i386.ddeb
 b927f9189f61fb7ecde89d6ccc9bd45cbbd379ce 146814 libmagick++-6.q16-5v5_6.8.9.9-7ubuntu5.13_i386.deb
 a4fb7f4ddc551d32b07ee4b3de5b3ad08381198e 928 libmagick++-6.q16-dev-dbgsym_6.8.9.9-7ubuntu5.13_i386.ddeb
 a034fb447ce964e4e1ff20778bd2c80cc13fdd74 113464 libmagick++-6.q16-dev_6.8.9.9-7ubuntu5.13_i386.deb
 d9c7b7f110b3b36809c1f1fb93446b1b5154beb6 1086 libmagickcore-6-arch-config-dbgsym_6.8.9.9-7ubuntu5.13_i386.ddeb
 fa8152fb4df0cb7c748a4256ff4204878914ce2b 22410 libmagickcore-6-arch-config_6.8.9.9-7ubuntu5.13_i386.deb
 47fbe1f71b0bee00e4a91911e85bd50a8a863fe3 1102 libmagickcore-6.q16-2-dbgsym_6.8.9.9-7ubuntu5.13_i386.ddeb
 fcd615b519636c1062ba9b59ebdd52600e2737a8 938 libmagickcore-6.q16-2-extra-dbgsym_6.8.9.9-7ubuntu5.13_i386.ddeb
 05a4c829526227ebe27d00a0c6e0e32d401608f8 62366 libmagickcore-6.q16-2-extra_6.8.9.9-7ubuntu5.13_i386.deb
 4ba54b5c8086c4cf984d87b729267bb1c67531b8 1633480 libmagickcore-6.q16-2_6.8.9.9-7ubuntu5.13_i386.deb
 5a9c1a258bd8786237cef99da3d5b8218bebd097 932 libmagickcore-6.q16-dev-dbgsym_6.8.9.9-7ubuntu5.13_i386.ddeb
 ceb16b39af701e564dd5a7f97582b0ff9f6cac6a 938990 libmagickcore-6.q16-dev_6.8.9.9-7ubuntu5.13_i386.deb
 1146c5ecc36503853caba49ba72a5ddea22bcdf8 1068 libmagickwand-6.q16-2-dbgsym_6.8.9.9-7ubuntu5.13_i386.ddeb
 aaee5527190c0f188c158bfc0cbabf63985340d1 270856 libmagickwand-6.q16-2_6.8.9.9-7ubuntu5.13_i386.deb
 a31dcc811a8c5a56e57511f4875240604f672ec9 920 libmagickwand-6.q16-dev-dbgsym_6.8.9.9-7ubuntu5.13_i386.ddeb
 fb71fb95318f83b77e42bffb82bd17b809bb913d 277904 libmagickwand-6.q16-dev_6.8.9.9-7ubuntu5.13_i386.deb
Checksums-Sha256:
 d4d78d4ead45c9a650ef5b295650eefadc24fce453b42ab4ceb770fae62e81f1 1206 imagemagick-6.q16-dbgsym_6.8.9.9-7ubuntu5.13_i386.ddeb
 1b2e82f3ab9fed53a4ead2611a8467457056b7c7852aab2cd9af71cc501c065f 386962 imagemagick-6.q16_6.8.9.9-7ubuntu5.13_i386.deb
 f29eee5e2503c226f8d4225578bb2ada7f12d7b906e3e0f84b15ab66ca66004c 5497838 imagemagick-dbg_6.8.9.9-7ubuntu5.13_i386.deb
 10e9469861d05972d2a9bc7d0857e6dab7478802b367ec6d41ffdf79aedeafe3 1206 imagemagick-dbgsym_6.8.9.9-7ubuntu5.13_i386.ddeb
 c9e04ff774616aedba67360575a2f6479f8260776a7eeb21b1ad270115d5c204 44830 imagemagick_6.8.9.9-7ubuntu5.13_i386.deb
 813bd4a8399133a1ff66cf07462fd91a9e07752ec6810b0dc09b50f634189548 988 libimage-magick-q16-perl-dbgsym_6.8.9.9-7ubuntu5.13_i386.ddeb
 ce7da6eb27defa2b10f7fdaa169bb20eb0860770b908ffcaf539748d584d808b 125336 libimage-magick-q16-perl_6.8.9.9-7ubuntu5.13_i386.deb
 44867c7f296c5722d999d498522fb52c6a5fdea28eca6820b87204392e7b1276 1000 libmagick++-6.q16-5v5-dbgsym_6.8.9.9-7ubuntu5.13_i386.ddeb
 1416d309724b8cd56417d3422e2a117c4358c2bd1fd1b2e753b6bfd65d5ecdef 146814 libmagick++-6.q16-5v5_6.8.9.9-7ubuntu5.13_i386.deb
 1888bf2f69498d739d5e79d41fff2ea601a7626fd05027b339d23be07c20915d 928 libmagick++-6.q16-dev-dbgsym_6.8.9.9-7ubuntu5.13_i386.ddeb
 ca6d3b1cf7bef50ee3106d197c84b8058076fd4767811cb314f22a5b58b1dace 113464 libmagick++-6.q16-dev_6.8.9.9-7ubuntu5.13_i386.deb
 de2d886baa212fb217d55a3131c82735b4de17e800af5726ab2eec5908ecbd34 1086 libmagickcore-6-arch-config-dbgsym_6.8.9.9-7ubuntu5.13_i386.ddeb
 fe268f1a840c7e39382190131caeed7054c4ed16b8577dca6a32b1b245cf5f48 22410 libmagickcore-6-arch-config_6.8.9.9-7ubuntu5.13_i386.deb
 fbe9ca4c78feb341f2ae98c633839ff5ea40705cf68e5ca6844bfd1c2f2bd648 1102 libmagickcore-6.q16-2-dbgsym_6.8.9.9-7ubuntu5.13_i386.ddeb
 08bb11a82c6600aaa8649df16ae516a0f93ab85eab63fc4200bfeac33e55f421 938 libmagickcore-6.q16-2-extra-dbgsym_6.8.9.9-7ubuntu5.13_i386.ddeb
 281c298d44c5fd16751ee53c9006fea89823653e9437b440a685d62ef1e03064 62366 libmagickcore-6.q16-2-extra_6.8.9.9-7ubuntu5.13_i386.deb
 13170bffcd23a1692b93ca8cb404b2612e5984ef26d74e5fc4f555c5776a0309 1633480 libmagickcore-6.q16-2_6.8.9.9-7ubuntu5.13_i386.deb
 7e5d43e887dbcfa062683b794212dace5bcf9da56b97150b6e67a481ba9b12cc 932 libmagickcore-6.q16-dev-dbgsym_6.8.9.9-7ubuntu5.13_i386.ddeb
 8ae514d5b188d949c8e8b9224f7b302b966201b56cdf6639c752f4b544d4347f 938990 libmagickcore-6.q16-dev_6.8.9.9-7ubuntu5.13_i386.deb
 6030f9afb2ba5cff98b1ecdb52b6bfb43e96f30c6398e228640f8828cf8539f7 1068 libmagickwand-6.q16-2-dbgsym_6.8.9.9-7ubuntu5.13_i386.ddeb
 2d07fd0807c181e3b88ab638686d1b00f65b2fa780f227aa0d1e5332198208d8 270856 libmagickwand-6.q16-2_6.8.9.9-7ubuntu5.13_i386.deb
 aa3c2d7800e96e3f528a4b743af2f6a6d66710c35c711053c08946d3773b3df4 920 libmagickwand-6.q16-dev-dbgsym_6.8.9.9-7ubuntu5.13_i386.ddeb
 a6f5ff1a0766bee657724a749c474b4dd645bd86dbe4838dc8d13d865936c9f9 277904 libmagickwand-6.q16-dev_6.8.9.9-7ubuntu5.13_i386.deb
Files:
 b748363fd2cb869f28e5a3dd9778fd66 1206 graphics extra imagemagick-6.q16-dbgsym_6.8.9.9-7ubuntu5.13_i386.ddeb
 f182a2a828f5dbf3e084a98558d3ea8f 386962 graphics optional imagemagick-6.q16_6.8.9.9-7ubuntu5.13_i386.deb
 15694911cbf39d5a751ca323633ee3e2 5497838 debug extra imagemagick-dbg_6.8.9.9-7ubuntu5.13_i386.deb
 7e1a2ef0aa7d61e782c2c50f6d7b96bf 1206 graphics extra imagemagick-dbgsym_6.8.9.9-7ubuntu5.13_i386.ddeb
 8808ed8b74ea7a3edf2c83a59e507a27 44830 graphics optional imagemagick_6.8.9.9-7ubuntu5.13_i386.deb
 b04730d7e26fd917d64859dc1ab95e18 988 perl extra libimage-magick-q16-perl-dbgsym_6.8.9.9-7ubuntu5.13_i386.ddeb
 49b147e958d9fe464640f81a8d88ec81 125336 perl optional libimage-magick-q16-perl_6.8.9.9-7ubuntu5.13_i386.deb
 19442b454f15a675d8010d38fd7e53c2 1000 libs extra libmagick++-6.q16-5v5-dbgsym_6.8.9.9-7ubuntu5.13_i386.ddeb
 960ce32dec433d5ea243965872222176 146814 libs optional libmagick++-6.q16-5v5_6.8.9.9-7ubuntu5.13_i386.deb
 83f6eaf99db40a2aa7e410d30b3cc5e6 928 libdevel extra libmagick++-6.q16-dev-dbgsym_6.8.9.9-7ubuntu5.13_i386.ddeb
 0b2e17fbce15a59bf06f10739ca39a7d 113464 libdevel optional libmagick++-6.q16-dev_6.8.9.9-7ubuntu5.13_i386.deb
 a964d133b3bf5c83229ce6ca718c2ce6 1086 libdevel extra libmagickcore-6-arch-config-dbgsym_6.8.9.9-7ubuntu5.13_i386.ddeb
 429d753d8447a6f7ff68822ce0e9a6e8 22410 libdevel optional libmagickcore-6-arch-config_6.8.9.9-7ubuntu5.13_i386.deb
 910afef6388e4c613f997dfb2eac52a8 1102 libs extra libmagickcore-6.q16-2-dbgsym_6.8.9.9-7ubuntu5.13_i386.ddeb
 6aae085bd952ad36cdad55566f83f17f 938 libs extra libmagickcore-6.q16-2-extra-dbgsym_6.8.9.9-7ubuntu5.13_i386.ddeb
 719d509455902c72f15112580af69e46 62366 libs optional libmagickcore-6.q16-2-extra_6.8.9.9-7ubuntu5.13_i386.deb
 898128d1fd44c1d537cb0e22afef3941 1633480 libs optional libmagickcore-6.q16-2_6.8.9.9-7ubuntu5.13_i386.deb
 fe90ed426b2e345b077654f079944231 932 libdevel extra libmagickcore-6.q16-dev-dbgsym_6.8.9.9-7ubuntu5.13_i386.ddeb
 d4c46152471c99499af44d303db7f48c 938990 libdevel optional libmagickcore-6.q16-dev_6.8.9.9-7ubuntu5.13_i386.deb
 8fec4ed193020501eae076c6e1f8e081 1068 libs extra libmagickwand-6.q16-2-dbgsym_6.8.9.9-7ubuntu5.13_i386.ddeb
 142f1ec683f689395b16acaaf7c90d76 270856 libs optional libmagickwand-6.q16-2_6.8.9.9-7ubuntu5.13_i386.deb
 3ed150ebcf94efbd5f8ffdd645f0683d 920 libdevel extra libmagickwand-6.q16-dev-dbgsym_6.8.9.9-7ubuntu5.13_i386.ddeb
 f518606bdebff6f38475606bf6970042 277904 libdevel optional libmagickwand-6.q16-dev_6.8.9.9-7ubuntu5.13_i386.deb
Original-Maintainer: ImageMagick Packaging Team <pkg-gmagick-im-team@lists.alioth.debian.org>