-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Tue, 18 Aug 2020 18:01:23 +0200 Source: imagemagick Binary: imagemagick-6-common imagemagick-6-doc libmagickcore-6-headers libmagickwand-6-headers libmagick++-6-headers libimage-magick-perl libmagickcore-6-arch-config imagemagick-6.q16 libmagickcore-6.q16-3 libmagickcore-6.q16-3-extra libmagickcore-6.q16-dev libmagickwand-6.q16-3 libmagickwand-6.q16-dev libmagick++-6.q16-7 libmagick++-6.q16-dev libimage-magick-q16-perl imagemagick-6.q16hdri libmagickcore-6.q16hdri-3 libmagickcore-6.q16hdri-3-extra libmagickcore-6.q16hdri-dev libmagickwand-6.q16hdri-3 libmagickwand-6.q16hdri-dev libmagick++-6.q16hdri-7 libmagick++-6.q16hdri-dev libimage-magick-q16hdri-perl imagemagick-common imagemagick-doc perlmagick libmagickcore-dev libmagickwand-dev libmagick++-dev imagemagick Architecture: source Version: 8:6.9.7.4+dfsg-11+deb9u9 Distribution: stretch-security Urgency: high Maintainer: ImageMagick Packaging Team <pkg-gmagick-im-team@lists.alioth.debian.org> Changed-By: Markus Koschany <apo@debian.org> Description: imagemagick - image manipulation programs -- binaries imagemagick-6-common - image manipulation programs -- infrastructure imagemagick-6-doc - document files of ImageMagick imagemagick-6.q16 - image manipulation programs -- quantum depth Q16 imagemagick-6.q16hdri - image manipulation programs -- quantum depth Q16HDRI imagemagick-common - image manipulation programs -- infrastructure dummy package imagemagick-doc - document files of ImageMagick -- dummy package libimage-magick-perl - Perl interface to the ImageMagick graphics routines libimage-magick-q16-perl - Perl interface to the ImageMagick graphics routines -- Q16 versio libimage-magick-q16hdri-perl - Perl interface to the ImageMagick graphics routines -- Q16HDRI ve libmagick++-6-headers - object-oriented C++ interface to ImageMagick - header files libmagick++-6.q16-7 - C++ interface to ImageMagick -- quantum depth Q16 libmagick++-6.q16-dev - C++ interface to ImageMagick - development files (Q16) libmagick++-6.q16hdri-7 - C++ interface to ImageMagick -- quantum depth Q16HDRI libmagick++-6.q16hdri-dev - C++ interface to ImageMagick - development files (Q16HDRI) libmagick++-dev - object-oriented C++ interface to ImageMagick -- dummy package libmagickcore-6-arch-config - low-level image manipulation library - architecture header files libmagickcore-6-headers - low-level image manipulation library - header files libmagickcore-6.q16-3 - low-level image manipulation library -- quantum depth Q16 libmagickcore-6.q16-3-extra - low-level image manipulation library - extra codecs (Q16) libmagickcore-6.q16-dev - low-level image manipulation library - development files (Q16) libmagickcore-6.q16hdri-3 - low-level image manipulation library -- quantum depth Q16HDRI libmagickcore-6.q16hdri-3-extra - low-level image manipulation library - extra codecs (Q16HDRI) libmagickcore-6.q16hdri-dev - low-level image manipulation library - development files (Q16HDRI libmagickcore-dev - low-level image manipulation library -- dummy package libmagickwand-6-headers - image manipulation library - headers files libmagickwand-6.q16-3 - image manipulation library -- quantum depth Q16 libmagickwand-6.q16-dev - image manipulation library - development files (Q16) libmagickwand-6.q16hdri-3 - image manipulation library -- quantum depth Q16HDRI libmagickwand-6.q16hdri-dev - image manipulation library - development files (Q16HDRI) libmagickwand-dev - image manipulation library -- dummy package perlmagick - Perl interface to ImageMagick -- dummy package Changes: imagemagick (8:6.9.7.4+dfsg-11+deb9u9) stretch-security; urgency=high . * Non-maintainer upload by the LTS team. * Fix CVE-2017-12805 CVE-2017-17681 CVE-2017-18252 CVE-2018-7443 CVE-2018-8804 CVE-2018-8960 CVE-2018-9133 CVE-2018-10177 CVE-2018-14551 CVE-2018-18024 CVE-2018-20467 CVE-2019-10131~ CVE-2019-11472 CVE-2019-11597 CVE-2019-12974 CVE-2019-12977 CVE-2019-12978 CVE-2019-12979 CVE-2019-13295 CVE-2019-13297 CVE-2019-11470 CVE-2019-13454 CVE-2019-14981 CVE-2019-19949. Several security vulnerabilities were fixed in Imagemagick. Various memory handling problems and cases of missing or incomplete input sanitizing may result in denial of service, memory or CPU exhaustion, information disclosure or potentially the execution of arbitrary code when a malformed image file is processed. Checksums-Sha1: 8eaa822516b171e766a775328ab75464d0140965 5316 imagemagick_6.9.7.4+dfsg-11+deb9u9.dsc 9d3dcb9d22e87d6211008a65f872562579025684 253268 imagemagick_6.9.7.4+dfsg-11+deb9u9.debian.tar.xz de1cf8f83c38572722d692eed77e147a09a8cfbb 11296 imagemagick_6.9.7.4+dfsg-11+deb9u9_source.buildinfo Checksums-Sha256: 17b22fc570bd7454002d3193ab6862365473affb4aba1cf532d50ad4466b6bff 5316 imagemagick_6.9.7.4+dfsg-11+deb9u9.dsc 451689547880703dcf4943f946d60e210c92212a524a5f38bcd06ca0a0084eb2 253268 imagemagick_6.9.7.4+dfsg-11+deb9u9.debian.tar.xz de15f797eaeb669c0faf8543d035b2163e09b2b33cd3fc0ccbe49a781cffb10d 11296 imagemagick_6.9.7.4+dfsg-11+deb9u9_source.buildinfo Files: 80e744006789c0f066702f02d4290241 5316 graphics optional imagemagick_6.9.7.4+dfsg-11+deb9u9.dsc d89f1d4b98b5159e06e4ad1e003df1e0 253268 graphics optional imagemagick_6.9.7.4+dfsg-11+deb9u9.debian.tar.xz cc3dc2259e9f0d91f371fca72c14ff87 11296 graphics optional imagemagick_6.9.7.4+dfsg-11+deb9u9_source.buildinfo -----BEGIN PGP SIGNATURE----- iQKjBAEBCgCNFiEErPPQiO8y7e9qGoNf2a0UuVE7UeQFAl88OpNfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldEFD RjNEMDg4RUYzMkVERUY2QTFBODM1RkQ5QUQxNEI5NTEzQjUxRTQPHGFwb0BkZWJp YW4ub3JnAAoJENmtFLlRO1HkNSMP/it40iNEUJumEDU9rJuUFbaYyIiF3Ikm1zpL hy4RdoK6Dtly8huaKIiW85xgcBShhcmfrpmAd019bwxt2GLTMtjAIhfJEnWM++tN V4gCr5R1x7duwv7NCcywMgT8AuCMsFgiMwcE+pUb57YS+lC5eEWdccSPDWDoI/DT bz0T8CQCUrpTo2m5RT58iwTbq9QgkE5wyMw1F4Ig+seIuqugTccawwIG/Q6H8v48 vXT5RQ/8Dks/V6JKSMQcNSe5qyhseZ6Fp5XroljtCexVVB9foyEuqu0ssQRD7gjl Bb2g7Q8x4PL6xCy44lrGsutS13peGiibTlo/8aqkpQOR/dnwZhfcImW5RJiGo5rK WioULF3RpvgzJU5x/RXZgt7NhdPQ/6Qmz3Gr5O4WIFwTYNBNEYRcAEexcqnaY9j8 i/9BcSMmYMRR0a2G63esd+2SUF2rR0FOrPgW6q8mC2oxGwqAQHPPpMq2xhCmrNke qwb+KabfXJG9CKIHGbvJe5XrpfBxOwskJ/0+qjWwr1ekQDuVrnOWmvDY6Q3d4HpV thT+3LRYJo4mFnwagTtPGb7pPc45NuewtlNd+h0uZdbGvSMZy4t59C3tYPQ4PP8U EjjMl1huYBqZq251hw0Mez8M2UgeTqbM6onUXdceeSVWGcBI5ztmC95XEmDFuLN8 0bDS60SN =45KU -----END PGP SIGNATURE-----