- graphicsmagick (1.4+really1.3.37-1+rpi1) bookworm-staging; urgency=medium
++graphicsmagick (1.4+really1.3.37+hg16670-1+rpi1) bookworm-staging; urgency=medium
+
+ [changes brought forward from 1.4+really1.3.36-1+rpi1 by Peter Michael Green <plugwash@raspbian.org> at Wed, 30 Dec 2020 03:11:26 +0000]
+ * Ignore test failures, the tests fail on 64-bit kernels.
+
- -- Raspbian forward porter <root@raspbian.org> Tue, 21 Dec 2021 22:43:50 +0000
++ -- Raspbian forward porter <root@raspbian.org> Fri, 18 Mar 2022 08:24:16 +0000
++
+ graphicsmagick (1.4+really1.3.37+hg16670-1) unstable; urgency=medium
+
+ * Mercurial snapshot:
+ - ReadJPEGImage(): Store embedded profiles in image, even if in 'ping'
+ mode (closes: #1006374).
+
+ -- Laszlo Boszormenyi (GCS) <gcs@debian.org> Sat, 26 Feb 2022 17:55:22 +0100
+
+ graphicsmagick (1.4+really1.3.37+hg16662-1) unstable; urgency=medium
+
+ * Mercurial snapshot, fixing the following security issues:
+ - ReadMATImageV4(): change 'ldblk' to size_t and check related
+ calculations for overflow and to avoid possible negative seek offsets,
+ - ReadMATImage(): change 'ldblk' to size_t and check related calculations
+ for overflow and to avoid possible negative seek offsets,
+ - added a ReadResource limit via the MAGICK_LIMIT_READ environment
+ variable on how many uncompressed file bytes may be read while decoding
+ an input file,
+ - DecodeImage(): assure that the claimed scanline length is within the
+ bounds of the scanline allocation to avoid possible heap overflow,
+ - ReadBlob(): fix EOF logic, an use-of-uninitialized-value in
+ SyncImageCallBack,
+ - ReadBlobStream(): fix EOF logic, an use-of-uninitialized-value in
+ WritePNMImage.
+ * Build with HEIF image format support.
+ * Update library symbols for this release.
+
+ -- Laszlo Boszormenyi (GCS) <gcs@debian.org> Fri, 11 Feb 2022 18:39:16 +0100
graphicsmagick (1.4+really1.3.37-1) unstable; urgency=high
projects / graphicsmagick.git / commitdiff