-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 29 Dec 2023 11:18:56 +0000 Source: imagemagick Architecture: source Version: 8:6.9.11.60+dfsg-1.3+deb11u2 Distribution: bullseye Urgency: medium Maintainer: ImageMagick Packaging Team <pkg-gmagick-im-team@lists.alioth.debian.org> Changed-By: Bastien Roucariès <rouca@debian.org> Closes: 996588 1013282 1016442 Changes: imagemagick (8:6.9.11.60+dfsg-1.3+deb11u2) bullseye; urgency=medium . * Fix CVE-2021-3574: memory leak was found in TIFF coder * Fix CVE-2021-4219: a special crafted file could lead to a DOS. * Fix CVE-2021-20241 / CVE-2021-20243: divide by zero in some coders (Closes: #1013282) * Fix CVE-2021-20244: Fix a divide by zero in visual-effects.c * Fix CVE-2021-20245: Fix a divide by zero in webp coder * Fix CVE-2021-20246: Fix a divide by zero in resample code. * Fix CVE-2021-20309: Fix a divide by zero in WaveImage function. * Fix CVE-2021-39212: Postscript files could be read and written when specifically excluded by a module policy in policy.xml file. (Closes: #996588) * Fix CVE-2022-1114: Heap use after free in RelinquishDCMInfo() (Closes: #1013282) * Fix CVE-2022-28463: Buffer overflow in cin coder. * Fix CVE-2022-32545: Value outside the range of unsigned char (Closes: #1016442) * Fix CVE-2022-32546: Value outside the range of representable values of type 'unsigned long' at coders/pcl.c, * Use Salsa CI Checksums-Sha1: 44900eccb8846638042eb87478289e5fd7f6dcd0 5131 imagemagick_6.9.11.60+dfsg-1.3+deb11u2.dsc 7014c16e17caec36e5fa983956e0184e63a755b8 253780 imagemagick_6.9.11.60+dfsg-1.3+deb11u2.debian.tar.xz 13201c7817bc3484cf5203996b0d4fe2d72362a1 14060 imagemagick_6.9.11.60+dfsg-1.3+deb11u2_source.buildinfo Checksums-Sha256: 0fe65f1f821de504474e2d7aeec8de0346e0930786e8b9e492a2b16c3ddfa77e 5131 imagemagick_6.9.11.60+dfsg-1.3+deb11u2.dsc 928eb1091d7269b2c090c3e128edc1a5e67bc5bd9dbfdf6a2b3f4105a4944baf 253780 imagemagick_6.9.11.60+dfsg-1.3+deb11u2.debian.tar.xz dcf149defee77439eacc8f2e0276de2463f239ee7d8f5b81f91bd66bf95ed6be 14060 imagemagick_6.9.11.60+dfsg-1.3+deb11u2_source.buildinfo Files: a23a5b0338bf63763c461c062f6414c6 5131 graphics optional imagemagick_6.9.11.60+dfsg-1.3+deb11u2.dsc e32a5786225ecdfbadf071240c772597 253780 graphics optional imagemagick_6.9.11.60+dfsg-1.3+deb11u2.debian.tar.xz 56361647661dc4809c39a133522776c5 14060 graphics optional imagemagick_6.9.11.60+dfsg-1.3+deb11u2_source.buildinfo -----BEGIN PGP SIGNATURE----- iQJFBAEBCgAvFiEEXQGHuUCiRbrXsPVqADoaLapBCF8FAmWOq5IRHHJvdWNhQGRl Ymlhbi5vcmcACgkQADoaLapBCF/hmg//bN+8HFk43gVepLlD8s7U3sJQhJW3np5i OqmLO9PfxRKEjZcuYyMUDn+ky4xVAB3GFxacgi2YNOFR//KYTZmnqjJ5n/SQP9cR adezS/ZG0n5+Mjhd+L5Qzb1fPoMm+b0mvlLLKG9rE35QRH7DKpXFOwqFEnAjTztK s6GinY2p/ZmVBQ0tIEG0oK1/2rgnkQRwDLVvsVj+qqmpQ8M5knMrXEf5mYaBSZBI bSguVL66wwcF62jQLn1sWPJT94Agg9+J7Xmz5NlYiOoBffeOq2HXfUNfwq1vP0zK 1hJNsfn6Fqjn03IUr2y6V/uJCcla0zK77FSys3WAOhY7MvMG6bF9sSsVB0k4DTtv 0uczwVwDuPVBTL8pu0fcDZ1OK2ql4IgDpo70mjnXXAYqFJgKzYQ8xXHsc3LQY5is fgayv7ZiLc0OI9rMvT6BHRqSIWrM5NVoYjr9xmwUMOOVjaamQuoReZHCbKz9aP3o 49uVdm3lUDhh32hPbePbwf19LI44k1LFNDXFlwwgkMHtrglZfB7p6ffXJDlAk6sv mIIyOAX/U3ACY5vrRj81TJdiOFZRTqicPvSbU6KaLTRCdqAwDdT2KjKec9ppadE7 FbDD3MNqps//oNOob9lVb5y14tMzhxRekYHza8Cv7k8JlB1JWbB7C2YF7IUeWatv Frf5C2PDrBU= =738o -----END PGP SIGNATURE-----
