From: Raspbian automatic forward porter <root@raspbian.org>
Date: Fri, 18 Mar 2022 08:24:17 +0000 (+0000)
Subject: Merge version 1.4+really1.3.37-1+rpi1 and 1.4+really1.3.37+hg16670-1 to produce 1... 
X-Git-Tag: raspbian/1.4+really1.3.37+hg16670-1+rpi1
X-Git-Url: https://dgit.raspbian.org/?a=commitdiff_plain;h=37c928fd324850adc0785c2caf72c54e38747eab;p=graphicsmagick.git

Merge version 1.4+really1.3.37-1+rpi1 and 1.4+really1.3.37+hg16670-1 to produce 1.4+really1.3.37+hg16670-1+rpi1
---

221f18e2f90971a505c90fc316eae6318689a76c
diff --cc debian/changelog
index d669a17,46b9734..90736a8
--- a/debian/changelog
+++ b/debian/changelog
@@@ -1,9 -1,31 +1,38 @@@
- graphicsmagick (1.4+really1.3.37-1+rpi1) bookworm-staging; urgency=medium
++graphicsmagick (1.4+really1.3.37+hg16670-1+rpi1) bookworm-staging; urgency=medium
 +
 +  [changes brought forward from 1.4+really1.3.36-1+rpi1 by Peter Michael Green <plugwash@raspbian.org> at Wed, 30 Dec 2020 03:11:26 +0000]
 +  * Ignore test failures, the tests fail on 64-bit kernels.
 +
-  -- Raspbian forward porter <root@raspbian.org>  Tue, 21 Dec 2021 22:43:50 +0000
++ -- Raspbian forward porter <root@raspbian.org>  Fri, 18 Mar 2022 08:24:16 +0000
++
+ graphicsmagick (1.4+really1.3.37+hg16670-1) unstable; urgency=medium
+ 
+   * Mercurial snapshot:
+     - ReadJPEGImage(): Store embedded profiles in image, even if in 'ping'
+       mode (closes: #1006374).
+ 
+  -- Laszlo Boszormenyi (GCS) <gcs@debian.org>  Sat, 26 Feb 2022 17:55:22 +0100
+ 
+ graphicsmagick (1.4+really1.3.37+hg16662-1) unstable; urgency=medium
+ 
+   * Mercurial snapshot, fixing the following security issues:
+     - ReadMATImageV4(): change 'ldblk' to size_t and check related
+       calculations for overflow and to avoid possible negative seek offsets,
+     - ReadMATImage(): change 'ldblk' to size_t and check related calculations
+       for overflow and to avoid possible negative seek offsets,
+     - added a ReadResource limit via the MAGICK_LIMIT_READ environment
+       variable on how many uncompressed file bytes may be read while decoding
+       an input file,
+     - DecodeImage(): assure that the claimed scanline length is within the
+       bounds of the scanline allocation to avoid possible heap overflow,
+     - ReadBlob(): fix EOF logic, an use-of-uninitialized-value in
+       SyncImageCallBack,
+     - ReadBlobStream(): fix EOF logic, an use-of-uninitialized-value in
+       WritePNMImage.
+   * Build with HEIF image format support.
+   * Update library symbols for this release.
+ 
+  -- Laszlo Boszormenyi (GCS) <gcs@debian.org>  Fri, 11 Feb 2022 18:39:16 +0100
  
  graphicsmagick (1.4+really1.3.37-1) unstable; urgency=high