Debian Package Tracker

From: Laszlo Boszormenyi (GCS) <gcs@debian.org>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted graphicsmagick 1.4~hg16039-1 (source) into unstable
Date: Fri, 07 Jun 2019 00:06:32 +0000
Signed by: Laszlo Boszormenyi <gcs@gcs.org.hu>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Thu, 06 Jun 2019 21:11:11 +0000
Source: graphicsmagick
Architecture: source
Version: 1.4~hg16039-1
Distribution: unstable
Urgency: high
Maintainer: Laszlo Boszormenyi (GCS) <gcs@debian.org>
Changed-By: Laszlo Boszormenyi (GCS) <gcs@debian.org>
Changes:
 graphicsmagick (1.4~hg16039-1) unstable; urgency=high
 .
   * Mercurial snapshot, fixing the following security issues:
     - ImportRLEPixels(): Fix heap overflow caused by a typo in the code. Also
       fix undefined behavior caused by large left shifts of an unsigned char,
     - ThrowException(), ThrowLoggedException(): Handle the case where some
       passed character strings refer to existing exception character strings,
     - PICT: Allocate output buffer used by ExpandBuffer() on DecodeImage()
       stack,
     - WritePDFImage(): Allocate working buffer on stack and pass as argument
       to EscapeParenthesis() to eliminate a thread safety problem,
     - TranslateTextEx(): Remove support for reading from a file using
       '@filename' syntax,
     - DrawImage(): Only support '@filename' syntax to read drawing primitive
       from a file if we are not already drawing.
   * Update library symbols for this release.
Checksums-Sha1:
 8e1faea3445ff382a8f35ddac742ee5b36e22cf2 2855 graphicsmagick_1.4~hg16039-1.dsc
 b6c34924385cd12c77afb4976f1c6d071fdd092b 8870128 graphicsmagick_1.4~hg16039.orig.tar.xz
 dd91be9ae1c7d2727abd0850e7e162401d68fe72 144672 graphicsmagick_1.4~hg16039-1.debian.tar.xz
 3eec6d727a69d2883eb9e4156a50a7ebdde72bb9 11899 graphicsmagick_1.4~hg16039-1_amd64.buildinfo
Checksums-Sha256:
 60a646d08e3f14512d557ce7f6fd5462a854dfe9c43a168ee3f0a9165153a3a9 2855 graphicsmagick_1.4~hg16039-1.dsc
 b7ec9aa152cb90e3c6cc1d7e190ef24ac33827a0122dbbef663776c88dacfca0 8870128 graphicsmagick_1.4~hg16039.orig.tar.xz
 abe1af86c84e61496ce11772fca671274b79295df1338c1a842313b5c32e2d0d 144672 graphicsmagick_1.4~hg16039-1.debian.tar.xz
 5cf882dfe29edc4955a50d3d72358a320c2bfcebcaf5bd98735ee4057984d712 11899 graphicsmagick_1.4~hg16039-1_amd64.buildinfo
Files:
 1c67b30b2c8b71ac2756ae117bf12a8f 2855 graphics optional graphicsmagick_1.4~hg16039-1.dsc
 2e84b08e5cfeb33a28537f57c11658ad 8870128 graphics optional graphicsmagick_1.4~hg16039.orig.tar.xz
 7a25856a2e42092c47760c7d71e9fca9 144672 graphics optional graphicsmagick_1.4~hg16039-1.debian.tar.xz
 69fe3d71585d9405c9dcd4f1c73141dc 11899 graphics optional graphicsmagick_1.4~hg16039-1_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=NLO6
-----END PGP SIGNATURE-----
News for package graphicsmagick
