-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 01 May 2026 16:29:15 +0200 Source: imagemagick Architecture: source Version: 8:7.1.2.21+dfsg1-1 Distribution: unstable Urgency: medium Maintainer: ImageMagick Packaging Team <pkg-gmagick-im-team@lists.alioth.debian.org> Changed-By: Bastien Roucariès <rouca@debian.org> Changes: imagemagick (8:7.1.2.21+dfsg1-1) unstable; urgency=medium . * New upstream version * Fix CVE-2026-42050: Stack buffer overflow in XTileImage A malicious MIFF file could trigger an overflow when a user opens it in the display tool and right-clicks a tile to invoke the Load/Update menu item. Checksums-Sha1: db3a293e5dd3ee287ac38fc9205a86815bf53612 5104 imagemagick_7.1.2.21+dfsg1-1.dsc 8f51f962c2b23dcccebbd455a07c70117e5312b5 10532752 imagemagick_7.1.2.21+dfsg1.orig.tar.xz 54f4ab318e5ac6ee7c337d336b95f9484ffab5dc 272064 imagemagick_7.1.2.21+dfsg1-1.debian.tar.xz e061ca92737964a83b716b9fbf75f4e279b91f77 8573 imagemagick_7.1.2.21+dfsg1-1_source.buildinfo Checksums-Sha256: 181b032ec5e8a672cb84bcf2f2f92bd7e2e01cb70e98f32ae47467e530638be4 5104 imagemagick_7.1.2.21+dfsg1-1.dsc adcdc0e95e7e2cfb07e2d860d725e76618714ad08064c893e3e01f6d4bb77be1 10532752 imagemagick_7.1.2.21+dfsg1.orig.tar.xz 631e4ee4285c2686174666d8a15e3aed001acd9f74d785b08d731a56531872d2 272064 imagemagick_7.1.2.21+dfsg1-1.debian.tar.xz 0175dd8d0534025507f2017cf824b34d8080db81cb2a216544823a59fc30cf5a 8573 imagemagick_7.1.2.21+dfsg1-1_source.buildinfo Files: 91f8fe94aab3cd7794f62e6715e55214 5104 graphics optional imagemagick_7.1.2.21+dfsg1-1.dsc d9ea61683631030454851cb334227198 10532752 graphics optional imagemagick_7.1.2.21+dfsg1.orig.tar.xz 5793c2b8e5e395c9a2f7b27250307fc8 272064 graphics optional imagemagick_7.1.2.21+dfsg1-1.debian.tar.xz 7f2986c05b02f929016cf21071efb989 8573 graphics optional imagemagick_7.1.2.21+dfsg1-1_source.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEXQGHuUCiRbrXsPVqADoaLapBCF8FAmn1B5UACgkQADoaLapB CF8pAg/9HI+NCejaVIkRzBuh6leRG7i/39F6Z93RDzIb+9XUVcQfjhjwViqybctX cYqIuZnL/RG3WlGy0gPgvh+8dlhrpfz8qi1ZiUq7xS8Ab8JTHAd50Xn0P5dfClck MNizjFXY/a3GtFfatpZRb/pjfUJrgJBLG2jKmd06Ry+NnAhml2CPqp6hhGDcakg/ 52/R71cgJFMrLVr7Q+s354eH9HJjeMCg0MZ9afTLPn3PJ+e8cGNMuY9MFFifYduq z8V03g4KQ/JD6gkl5TI5nd5eTO+d/o+4VzUkMGWX/FC7hnVF3MANh3JFmHvCvuyV 1q6wZZBwPut28sSbheblicHZxpc/1miXx45IvRiOQYbUvl6ionP6ON1WNpDszKW/ Na4KF15aEbXVB3Lzcn+xTMHfv8oZ1zcSnrxpPbGjk1YAc+xQKm/2mibWdvgrr6bR 7hKiSfjqjS7NX9+fG7g9awalYAaZ8RLQ7VNPGdPpJKGHpZ7bhsIRYjmub3ewabxs 8QMdRlEWg1R6q6x5gDkRrgjJ9PmVh/EASTO1LdQLA4qT1da7izslXE7h0MnyHNwK GnjKVCa+3PAk4rpbo1Vri/Bo2b5VC8wcOTCjT7z+isI8H+N4X3/a1shnauPxnULE 3GQSngtJdDpcT6jnuFeezp5lb0WxK3MFtCQNj1/7Zvu74lhXqlU= =V26q -----END PGP SIGNATURE-----
