From: Raspbian automatic forward porter <root@raspbian.org>
Date: Wed, 19 Oct 2022 03:08:03 +0000 (+0100)
Subject: Merge version 1.4+really1.3.38-1+rpi1 and 1.4+really1.3.38+hg16739-1 to produce 1... 
X-Git-Tag: archive/raspbian/1.4+really1.3.38+hg16739-1+rpi1^0
X-Git-Url: https://dgit.raspbian.org/?a=commitdiff_plain;h=1c5940ec5d7dd10dc66b39e20751ab6bd73c8739;p=graphicsmagick.git

Merge version 1.4+really1.3.38-1+rpi1 and 1.4+really1.3.38+hg16739-1 to produce 1.4+really1.3.38+hg16739-1+rpi1
---

1c5940ec5d7dd10dc66b39e20751ab6bd73c8739
diff --cc debian/changelog
index cc45927,51711fc..68e2898
--- a/debian/changelog
+++ b/debian/changelog
@@@ -1,9 -1,28 +1,35 @@@
- graphicsmagick (1.4+really1.3.38-1+rpi1) bookworm-staging; urgency=medium
++graphicsmagick (1.4+really1.3.38+hg16739-1+rpi1) bookworm-staging; urgency=medium
 +
 +  [changes brought forward from 1.4+really1.3.36-1+rpi1 by Peter Michael Green <plugwash@raspbian.org> at Wed, 30 Dec 2020 03:11:26 +0000]
 +  * Ignore test failures, the tests fail on 64-bit kernels.
 +
-  -- Raspbian forward porter <root@raspbian.org>  Wed, 30 Mar 2022 10:16:58 +0000
++ -- Raspbian forward porter <root@raspbian.org>  Wed, 19 Oct 2022 03:08:03 +0000
++
+ graphicsmagick (1.4+really1.3.38+hg16739-1) unstable; urgency=high
+ 
+   * Mercurial snapshot, fixing the following security issue:
+     - ReadSVGImage(): null pointer dereference by checking return from
+       xmlCreatePushParserCtxt() .
+   * Restore non-const Image::colorMapSize() since it caused an ABI change
+     (closes: #1019158).
+ 
+  -- Laszlo Boszormenyi (GCS) <gcs@debian.org>  Tue, 06 Sep 2022 18:30:49 +0200
+ 
+ graphicsmagick (1.4+really1.3.38+hg16728-1) unstable; urgency=high
+ 
+   * Mercurial snapshot, fixing the following security issues:
+     - ThrowLoggedException(): dereference after NULL check,
+     - ReadJP2Image(): division by float zero,
+     - MagickXMakeMagnifyImage(): division by zero,
+     - ScaleImage(): resource leak,
+     - GetLocaleMessageFromTag(): out of bounds read,
+     - DrawPrimitive(): out of bounds access,
+     - ReadOnePNGImage(): use of uninitialized value,
+     - ReadMNGImage(): heap use after free in CloseBlob(),
+     - ReadMNGImage(): indirect leak,
+     - ReadOnePNGImage(): indirect leak in MagickMallocCleared().
+ 
+  -- Laszlo Boszormenyi (GCS) <gcs@debian.org>  Thu, 11 Aug 2022 23:50:27 +0200
  
  graphicsmagick (1.4+really1.3.38-1) unstable; urgency=high