dgit.raspbian.org Git - graphicsmagick.git/commit

author	Salvatore Bonaccorso <carnil@debian.org>
	Fri, 11 Apr 2025 20:49:23 +0000 (22:49 +0200)
committer	Salvatore Bonaccorso <carnil@debian.org>
	Fri, 11 Apr 2025 20:49:23 +0000 (22:49 +0200)
commit	090705eb72aae5b4f84642fc9e99d82ab64ff58f
tree	263e577f24171bd7d3cc14c47ddf972067d3f401	tree \| snapshot
parent	ded9e7d1fd34c1706058978e92b506a1bf17979e	commit \| diff
parent	c59db524136faf9ba2e6e3e03df541be3122de78	commit \| diff

graphicsmagick (1.4+really1.3.40-4+deb12u1) bookworm-security; urgency=high

  * Non-maintainer upload by the Security Team.

  [ Carlos Henrique Lima Melara ]
  * d/p/CVE-2025-27795.patch: fix CVE-2025-27795 by adding image dimension
    resource limits. (Closes: #1099955)

  [ Salvatore Bonaccorso ]
  * ReadJXLImage(): pixel_format.num_channels needs to be 2 for grayscale
    matte (CVE-2025-32460)

[dgit import unpatched graphicsmagick 1.4+really1.3.40-4+deb12u1]

62 files changed:

debian/Magick.pm	\|	\|	blob
debian/README.Debian	\|	\|	blob
debian/changelog	\|	\|	blob
debian/control	\|	\|	blob
debian/copyright	\|	\|	blob
debian/graphicsmagick-imagemagick-compat.links	\|	\|	blob
debian/graphicsmagick-libmagick-dev-compat.install	\|	\|	blob
debian/graphicsmagick-libmagick-dev-compat.links	\|	\|	blob
debian/graphicsmagick-libmagick-dev-compat.manpages	\|	\|	blob
debian/graphicsmagick.docs	\|	\|	blob
debian/graphicsmagick.install	\|	\|	blob
debian/graphicsmagick.manpages	\|	\|	blob
debian/graphicsmagick.menu	\|	\|	blob
debian/graphicsmagick.mime	\|	\|	blob
debian/libgraphics-magick-perl.install	\|	\|	blob
debian/libgraphics-magick-perl.manpages	\|	\|	blob
debian/libgraphicsmagick++-q16-12.install	\|	\|	blob
debian/libgraphicsmagick++-q16-12.symbols.32bit.in	\|	\|	blob
debian/libgraphicsmagick++-q16-12.symbols.64bit.in	\|	\|	blob
debian/libgraphicsmagick++-q16-12.symbols.alpha.disabled	\|	\|	blob
debian/libgraphicsmagick++-q16-12.symbols.amd64.disabled	\|	\|	blob
debian/libgraphicsmagick++-q16-12.symbols.arm.disabled	\|	\|	blob
debian/libgraphicsmagick++-q16-12.symbols.armel.disabled	\|	\|	blob
debian/libgraphicsmagick++-q16-12.symbols.common.in	\|	\|	blob
debian/libgraphicsmagick++-q16-12.symbols.disabled	\|	\|	blob
debian/libgraphicsmagick++-q16-12.symbols.hppa.disabled	\|	\|	blob
debian/libgraphicsmagick++-q16-12.symbols.hppa.in	\|	\|	blob
debian/libgraphicsmagick++-q16-12.symbols.i386.disabled	\|	\|	blob
debian/libgraphicsmagick++-q16-12.symbols.ia64.disabled	\|	\|	blob
debian/libgraphicsmagick++-q16-12.symbols.m68k.disabled	\|	\|	blob
debian/libgraphicsmagick++-q16-12.symbols.mips.disabled	\|	\|	blob
debian/libgraphicsmagick++-q16-12.symbols.mipsel.disabled	\|	\|	blob
debian/libgraphicsmagick++-q16-12.symbols.powerpc.disabled	\|	\|	blob
debian/libgraphicsmagick++-q16-12.symbols.s390.disabled	\|	\|	blob
debian/libgraphicsmagick++-q16-12.symbols.sparc.disabled	\|	\|	blob
debian/libgraphicsmagick++1-dev.dirs	\|	\|	blob
debian/libgraphicsmagick++1-dev.install	\|	\|	blob
debian/libgraphicsmagick++1-dev.links	\|	\|	blob
debian/libgraphicsmagick++1-dev.manpages	\|	\|	blob
debian/libgraphicsmagick-q16-3.install	\|	\|	blob
debian/libgraphicsmagick-q16-3.symbols	\|	\|	blob
debian/libgraphicsmagick1-dev.dirs	\|	\|	blob
debian/libgraphicsmagick1-dev.install	\|	\|	blob
debian/libgraphicsmagick1-dev.links	\|	\|	blob
debian/libgraphicsmagick1-dev.manpages	\|	\|	blob
debian/patches/CVE-2025-27795.patch	\|	\|	blob
debian/patches/CVE-2025-32460.patch	\|	\|	blob
debian/patches/eliminate_memory_leak_when_handling_EXIFOrientation.patch	\|	\|	blob
debian/patches/fix_bounds_issue_when_concatenating_string.patch	\|	\|	blob
debian/patches/link-demos.diff	\|	\|	blob
debian/patches/semaphore_O0_ppc64el.patch	\|	\|	blob
debian/patches/series	\|	\|	blob
debian/reference-new/PerlMagick/t/reference/ttf/annotate.miff.uu	\|	\|	blob
debian/reference-new/PerlMagick/t/reference/ttf/label.miff.uu	\|	\|	blob
debian/reference-new/PerlMagick/t/reference/ttf/read.miff.uu	\|	\|	blob
debian/reference-new/PerlMagick/t/reference/wmf/ski.miff.uu	\|	\|	blob
debian/rules	\|	\|	blob
debian/source/format	\|	\|	blob
debian/source/lintian-overrides	\|	\|	blob
debian/upstream/metadata	\|	\|	blob
debian/upstream/signing-key.asc	\|	\|	blob
debian/watch	\|	\|	blob

Unnamed repository; edit this file 'description' to name the repository.

RSS Atom