Debian Package Tracker

From: Hugo Lefeuvre <hle@debian.org>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted graphicsmagick 1.3.20-3+deb8u7 (source amd64 all) into oldstable
Date: Mon, 20 May 2019 07:20:17 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sun, 19 May 2019 08:01:07 +0200
Source: graphicsmagick
Binary: graphicsmagick libgraphicsmagick3 libgraphicsmagick1-dev libgraphicsmagick++3 libgraphicsmagick++1-dev libgraphics-magick-perl graphicsmagick-imagemagick-compat graphicsmagick-libmagick-dev-compat graphicsmagick-dbg
Architecture: source amd64 all
Version: 1.3.20-3+deb8u7
Distribution: jessie-security
Urgency: medium
Maintainer: Laszlo Boszormenyi (GCS) <gcs@debian.org>
Changed-By: Hugo Lefeuvre <hle@debian.org>
Description:
 graphicsmagick - collection of image processing tools
 graphicsmagick-dbg - format-independent image processing - debugging symbols
 graphicsmagick-imagemagick-compat - image processing tools providing ImageMagick interface
 graphicsmagick-libmagick-dev-compat - image processing libraries providing ImageMagick interface
 libgraphics-magick-perl - format-independent image processing - perl interface
 libgraphicsmagick++1-dev - format-independent image processing - C++ development files
 libgraphicsmagick++3 - format-independent image processing - C++ shared library
 libgraphicsmagick1-dev - format-independent image processing - C development files
 libgraphicsmagick3 - format-independent image processing - C shared library
Changes:
 graphicsmagick (1.3.20-3+deb8u7) jessie-security; urgency=medium
 .
   * Non-maintainer upload by the LTS Security Team.
   * CVE-2019-11506: missing error handling primitives causes heap-based
     buffer overflow in WriteMATLABImage (coders/mat.c) when processing crafted
     Matlab matrix data.
   * CVE-2019-11505: heap-based buffer overflow in WritePDBImage (coders/pdb.c)
     when processing crafted PDB images.
   * CVE-2019-11474: floating-point exception in coders/xwd.c when processing
     crafted XWD images.
   * CVE-2019-11473: out-of-bounds read in coders/xwd.c when processing crafted
     XWD images.
   * Fix GCC warnings introduced in CVE-2017-10799.patch and
     CVE-2019-11009.patch (previous upload).
Checksums-Sha1:
 acb4fedf2c97b819e7f979ff760f589d693fa008 2489 graphicsmagick_1.3.20-3+deb8u7.dsc
 73042eee48e17d074f68f6f70fc81b221481255a 5206616 graphicsmagick_1.3.20.orig.tar.xz
 baa53df5e7e78305b970d06642903b78ad9f72c6 217924 graphicsmagick_1.3.20-3+deb8u7.debian.tar.xz
 e386525cc2d84e464c14ce57e3bb078508a9913f 796812 graphicsmagick_1.3.20-3+deb8u7_amd64.deb
 eeff8d325341a308a8abdc9beeff5a9ce9b711dd 1107448 libgraphicsmagick3_1.3.20-3+deb8u7_amd64.deb
 aace3f998800275496d9ce03e2526a47533d6176 1293268 libgraphicsmagick1-dev_1.3.20-3+deb8u7_amd64.deb
 acaa7cea9c59b4c543db25fac776edef25e37486 120200 libgraphicsmagick++3_1.3.20-3+deb8u7_amd64.deb
 2f52e0ecc8afeab22aa16541bdce2ce9148baeeb 301176 libgraphicsmagick++1-dev_1.3.20-3+deb8u7_amd64.deb
 6a6fb988e787e05fc762f3d3cb3362c82926ef56 77794 libgraphics-magick-perl_1.3.20-3+deb8u7_amd64.deb
 8136218704c57d03372d770858a72ae1ff7a22ba 2224868 graphicsmagick-dbg_1.3.20-3+deb8u7_amd64.deb
 1cdb7f8a94c5acad9d57977ad7504191368da60e 29854 graphicsmagick-imagemagick-compat_1.3.20-3+deb8u7_all.deb
 1e5b2a31b47b40d5477dfbb7650920ed2ca8a2b7 33260 graphicsmagick-libmagick-dev-compat_1.3.20-3+deb8u7_all.deb
Checksums-Sha256:
 41224f6bc6fdf2f94b0597b0002274c2aea4d4b96c08106aee56964259d4db6b 2489 graphicsmagick_1.3.20-3+deb8u7.dsc
 35fa21da4c1479e08da8351c5b1e363adaca803a0064cfc83084363adce387c9 5206616 graphicsmagick_1.3.20.orig.tar.xz
 7b004cc5f2ba0d78ca95170c2beaafbdb74729b44302045775c4a8c8f7091e33 217924 graphicsmagick_1.3.20-3+deb8u7.debian.tar.xz
 d0ee2db79ecd21a0209ccdb9512cf6d156166f2dbaad51046f2e178d49a5c9fe 796812 graphicsmagick_1.3.20-3+deb8u7_amd64.deb
 45bbaf27c6d934150653e0a3fb25a3a84ad3e49c591f43e6831a8ac63cbc4991 1107448 libgraphicsmagick3_1.3.20-3+deb8u7_amd64.deb
 933e8a542569ab2d959f3310edc9bb2a17f698ae2f89ea351efa6eea9fb380d6 1293268 libgraphicsmagick1-dev_1.3.20-3+deb8u7_amd64.deb
 de5775238c3237d3d213796d71b4c6c385251b9c06f8d3bad4c072809d9b6757 120200 libgraphicsmagick++3_1.3.20-3+deb8u7_amd64.deb
 5b0f996a32fc2109d515d2cebf7fe9e63bc0f9ac385179eb639e0f8fe268fdb7 301176 libgraphicsmagick++1-dev_1.3.20-3+deb8u7_amd64.deb
 a54e7f29bdb1304b18207a64c21bf82271831368084ea904c9723f6134e93589 77794 libgraphics-magick-perl_1.3.20-3+deb8u7_amd64.deb
 c36b307f6436591ab00e91e291c8c739c8697dbd14111e678a3ba06e2a892a7c 2224868 graphicsmagick-dbg_1.3.20-3+deb8u7_amd64.deb
 45461f62d52ac6f39b1b3695696aaba3d1e75923248fcf9735b63a6898631f37 29854 graphicsmagick-imagemagick-compat_1.3.20-3+deb8u7_all.deb
 240c08e7cd07c57a9f62de4dc373b5fa3f64ce9acb327492a034b558d53fbed0 33260 graphicsmagick-libmagick-dev-compat_1.3.20-3+deb8u7_all.deb
Files:
 a042fe17f2ec44202b97a8ea3fe3031c 2489 graphics optional graphicsmagick_1.3.20-3+deb8u7.dsc
 5bb456e3466026ada6f12cc53c9776dc 5206616 graphics optional graphicsmagick_1.3.20.orig.tar.xz
 b7afe36bdfa1fa1a5cd3bc83c6a15f05 217924 graphics optional graphicsmagick_1.3.20-3+deb8u7.debian.tar.xz
 213732a9b2ba713ec6df7077ca5c5881 796812 graphics optional graphicsmagick_1.3.20-3+deb8u7_amd64.deb
 caacedc7aa3918a216b917a161ad5910 1107448 libs optional libgraphicsmagick3_1.3.20-3+deb8u7_amd64.deb
 c70f9aeb6bdc07ec7664c75fae4cad6e 1293268 libdevel optional libgraphicsmagick1-dev_1.3.20-3+deb8u7_amd64.deb
 d8965de0e2571b1f625b25bcc20b3155 120200 libs optional libgraphicsmagick++3_1.3.20-3+deb8u7_amd64.deb
 e1a9be76ae7800dd5e6922fda5a26861 301176 libdevel optional libgraphicsmagick++1-dev_1.3.20-3+deb8u7_amd64.deb
 cb4643f18cdb41066ec33ba18c299416 77794 perl optional libgraphics-magick-perl_1.3.20-3+deb8u7_amd64.deb
 3acc7bde038bb9efd5a18bc35f0813f4 2224868 debug extra graphicsmagick-dbg_1.3.20-3+deb8u7_amd64.deb
 0d7cec23da0dba81ffbf673513b54161 29854 graphics extra graphicsmagick-imagemagick-compat_1.3.20-3+deb8u7_all.deb
 750be61ffdbfaea45896537ff808e7c2 33260 graphics extra graphicsmagick-libmagick-dev-compat_1.3.20-3+deb8u7_all.deb

-----BEGIN PGP SIGNATURE-----

iQEzBAEBCgAdFiEEUFZhdgIWqBhwqCvuZYVUZx9w0DQFAlziT84ACgkQZYVUZx9w
0DR8owf/f8LJaDJoQGy7qVODuRpEu/qEx8Jkvsk/Wht8vv+qZ01M5/nMHoa8Tb+J
isuA7C/MSUEilk9kP+DITVwnfeQ0EtD3SQfRJcxgDU9m3rzFjusKVblXlfbzrQLj
OxXhVb2I5ciDZ4O5R4dtDm16Z3MAnjHtp5FHVTWxGRLnSEHK++sGqZBLn9AgySn0
bdkcwhtktfrZMPmiXuSmLyt1s3GueHB6gmbNdnJ4ws+cm9cUeV/e0pw1hXZF9Ta2
2yW7MBxtSgrdj6jcbav+dbe+dgeWapC4IgfTPTwH4+3Nl+LlyDlrzqiVwWHD0kat
91bcEMFihtzj5jmj+E868HtYKOtwoQ==
=7xIf
-----END PGP SIGNATURE-----
News for package graphicsmagick
