Format: 1.8 Date: Thu, 18 Nov 2021 20:39:34 +1100 Source: imagemagick Binary: imagemagick-6-common imagemagick-6-doc libmagickcore-6-headers libmagickwand-6-headers libmagick++-6-headers libimage-magick-perl libmagickcore-6-arch-config imagemagick-6.q16 libmagickcore-6.q16-3 libmagickcore-6.q16-3-extra libmagickcore-6.q16-dev libmagickwand-6.q16-3 libmagickwand-6.q16-dev libmagick++-6.q16-7 libmagick++-6.q16-dev libimage-magick-q16-perl imagemagick-6.q16hdri libmagickcore-6.q16hdri-3 libmagickcore-6.q16hdri-3-extra libmagickcore-6.q16hdri-dev libmagickwand-6.q16hdri-3 libmagickwand-6.q16hdri-dev libmagick++-6.q16hdri-7 libmagick++-6.q16hdri-dev libimage-magick-q16hdri-perl imagemagick-common imagemagick-doc perlmagick libmagickcore-dev libmagickwand-dev libmagick++-dev imagemagick Architecture: source Version: 8:6.9.7.4+dfsg-16ubuntu6.12 Distribution: bionic-security Urgency: medium Maintainer: Ubuntu Developers Changed-By: Ray Veldkamp Description: imagemagick - image manipulation programs -- binaries imagemagick-6-common - image manipulation programs -- infrastructure imagemagick-6-doc - document files of ImageMagick imagemagick-6.q16 - image manipulation programs -- quantum depth Q16 imagemagick-6.q16hdri - image manipulation programs -- quantum depth Q16HDRI imagemagick-common - image manipulation programs -- infrastructure dummy package imagemagick-doc - document files of ImageMagick -- dummy package libimage-magick-perl - Perl interface to the ImageMagick graphics routines libimage-magick-q16-perl - Perl interface to the ImageMagick graphics routines -- Q16 versio libimage-magick-q16hdri-perl - Perl interface to the ImageMagick graphics routines -- Q16HDRI ve libmagick++-6-headers - object-oriented C++ interface to ImageMagick - header files libmagick++-6.q16-7 - C++ interface to ImageMagick -- quantum depth Q16 libmagick++-6.q16-dev - C++ interface to ImageMagick - development files (Q16) libmagick++-6.q16hdri-7 - C++ interface to ImageMagick -- quantum depth Q16HDRI libmagick++-6.q16hdri-dev - C++ interface to ImageMagick - development files (Q16HDRI) libmagick++-dev - object-oriented C++ interface to ImageMagick -- dummy package libmagickcore-6-arch-config - low-level image manipulation library - architecture header files libmagickcore-6-headers - low-level image manipulation library - header files libmagickcore-6.q16-3 - low-level image manipulation library -- quantum depth Q16 libmagickcore-6.q16-3-extra - low-level image manipulation library - extra codecs (Q16) libmagickcore-6.q16-dev - low-level image manipulation library - development files (Q16) libmagickcore-6.q16hdri-3 - low-level image manipulation library -- quantum depth Q16HDRI libmagickcore-6.q16hdri-3-extra - low-level image manipulation library - extra codecs (Q16HDRI) libmagickcore-6.q16hdri-dev - low-level image manipulation library - development files (Q16HDRI libmagickcore-dev - low-level image manipulation library -- dummy package libmagickwand-6-headers - image manipulation library - headers files libmagickwand-6.q16-3 - image manipulation library -- quantum depth Q16 libmagickwand-6.q16-dev - image manipulation library - development files (Q16) libmagickwand-6.q16hdri-3 - image manipulation library -- quantum depth Q16HDRI libmagickwand-6.q16hdri-dev - image manipulation library - development files (Q16HDRI) libmagickwand-dev - image manipulation library -- dummy package perlmagick - Perl interface to ImageMagick -- dummy package Changes: imagemagick (8:6.9.7.4+dfsg-16ubuntu6.12) bionic-security; urgency=medium . * SECURITY UPDATE: Multiple divide by zero issues in imagemagick allow a remote attacker to cause a denial of service via a crafted image file - debian/patches/CVE-2021-20244.patch: Avoid division by zero in magick/fx.c - debian/patches/CVE-2021-20309.patch: Avoid division by zero in magick/fx.c - debian/patches/CVE-2021-20246.patch: Avoid division by zero in magick/resample.c - CVE-2021-20244, CVE-2021-20309, CVE-2021-20246 * SECURITY UPDATE: Integer overflow, divide by zero and memory leak in imagemagick allow a remote attacker to cause a denial of service or possible leak of cryptographic information via a crafted image file - debian/patches/CVE-2021-20312.patch: Avoid integer overflow in coders/thumbnail.c, division by zero in magick/colorspace.c and a potential cipher leak in magick/memory.c - CVE-2021-20312, CVE-2021-20313 Checksums-Sha1: a76e243972ce4308b94cbfa01cad484cc9c51606 5275 imagemagick_6.9.7.4+dfsg-16ubuntu6.12.dsc cdc377bd66332054e29601203a603802f8a4bcab 314320 imagemagick_6.9.7.4+dfsg-16ubuntu6.12.debian.tar.xz 53954c0d99f6d3c790a0cd307e7195fb5a44e81b 16264 imagemagick_6.9.7.4+dfsg-16ubuntu6.12_source.buildinfo Checksums-Sha256: 67e86b1c1abe46c25172787de673d76a8ce55f29abf743270e73dd4d2ea72a97 5275 imagemagick_6.9.7.4+dfsg-16ubuntu6.12.dsc 1344bf73dffe8b0724aaf2e3b68869bf7f1abcd4b0292ceba307995f206a2973 314320 imagemagick_6.9.7.4+dfsg-16ubuntu6.12.debian.tar.xz 9dea4b04db4735bc4fa71b83a298efa1a6843442928ea7f2840cbc75811b2b78 16264 imagemagick_6.9.7.4+dfsg-16ubuntu6.12_source.buildinfo Files: 858ddc70364f93f260f7cfd7d1fda928 5275 graphics optional imagemagick_6.9.7.4+dfsg-16ubuntu6.12.dsc 8bcf68c849a4fa5ec631de11110e53da 314320 graphics optional imagemagick_6.9.7.4+dfsg-16ubuntu6.12.debian.tar.xz bbef544f201c2339fede38ea55488568 16264 graphics optional imagemagick_6.9.7.4+dfsg-16ubuntu6.12_source.buildinfo Original-Maintainer: ImageMagick Packaging Team