Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package GraphicsMagick for openSUSE:Factory
checked in at 2025-12-24 13:15:16
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/GraphicsMagick (Old)
and /work/SRC/openSUSE:Factory/.GraphicsMagick.new.1928 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "GraphicsMagick"
Wed Dec 24 13:15:16 2025 rev:97 rq:1324183 version:1.3.46
Changes:
--------
--- /work/SRC/openSUSE:Factory/GraphicsMagick/GraphicsMagick.changes
2025-11-17 12:08:55.241180857 +0100
+++ /work/SRC/openSUSE:Factory/.GraphicsMagick.new.1928/GraphicsMagick.changes
2025-12-24 13:15:20.872073951 +0100
@@ -1,0 +2,29 @@
+Mon Dec 22 11:36:09 UTC 2025 - Petr Gajdos <[email protected]>
+
+- versino update to 1.3.46
+ * MSL: Use libxml2's SAX handlers for the MVG XML-based scripting
+ implementation. This removes a lot of archaic cruft which might
+ suffer from security issues.
+ * JP2: Fix Jasper max_samples calculation to avoid DOS due to huge
+ image dimensions.
+ * JXL: Apply image dimension resource limits. Fix heap buffer write
+ overflow while reading image.
+ * SVG: Use libxml2's SAX handlers for the SVG renderer. This removes
+ a lot of archaic cruft which might suffer from security issues.
+ * WPG: Assure that the palette buffer is allocated and the current
+ size (SourceForge bug #750).
+ * ColorFloodfillImage(): For floodfill, return an error if a clip-mask
+ is present. The problem is that the algorithm may not converge if a
+ clip-mask is present.
+ * ThumbnailImage(): Prevent a divide by zero crash.
+ * other bug fixes
+- modified patches
+ * GraphicsMagick-disable-insecure-coders.patch (refreshed)
+ * GraphicsMagick-perl-linkage.patch (refreshed)
+- deleted patches
+ * GraphicsMagick-CVE-2025-27795.patch (upstreamed)
+ * GraphicsMagick-CVE-2025-27796.patch (upstreamed)
+ * GraphicsMagick-CVE-2025-32460.patch (upstreamed)
+ * GraphicsMagick-return-value.patch (upstreamed)
+
+-------------------------------------------------------------------
Old:
----
GraphicsMagick-1.3.45.tar.xz
GraphicsMagick-CVE-2025-27795.patch
GraphicsMagick-CVE-2025-27796.patch
GraphicsMagick-CVE-2025-32460.patch
GraphicsMagick-return-value.patch
New:
----
GraphicsMagick-1.3.46.tar.xz
----------(Old B)----------
Old:- deleted patches
* GraphicsMagick-CVE-2025-27795.patch (upstreamed)
* GraphicsMagick-CVE-2025-27796.patch (upstreamed)
Old: * GraphicsMagick-CVE-2025-27795.patch (upstreamed)
* GraphicsMagick-CVE-2025-27796.patch (upstreamed)
* GraphicsMagick-CVE-2025-32460.patch (upstreamed)
Old: * GraphicsMagick-CVE-2025-27796.patch (upstreamed)
* GraphicsMagick-CVE-2025-32460.patch (upstreamed)
* GraphicsMagick-return-value.patch (upstreamed)
Old: * GraphicsMagick-CVE-2025-32460.patch (upstreamed)
* GraphicsMagick-return-value.patch (upstreamed)
----------(Old E)----------
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ GraphicsMagick.spec ++++++
--- /var/tmp/diff_new_pack.4nvv3r/_old 2025-12-24 13:15:22.568143791 +0100
+++ /var/tmp/diff_new_pack.4nvv3r/_new 2025-12-24 13:15:22.572143955 +0100
@@ -24,7 +24,7 @@
%define pp_so_ver 12
%define wand_so_ver 2
Name: GraphicsMagick
-Version: 1.3.45
+Version: 1.3.46
Release: 0
Summary: Viewer and Converter for Images
License: MIT
@@ -33,14 +33,6 @@
Source:
https://downloads.sourceforge.net/project/graphicsmagick/graphicsmagick/%{version}/%{name}-%{version}.tar.xz
Patch0: GraphicsMagick-perl-linkage.patch
Patch1: GraphicsMagick-disable-insecure-coders.patch
-# CVE-2025-27795 [bsc#1239044], JXL in GraphicsMagick before 1.3.46 lacks
image dimension resource limits.
-Patch2: GraphicsMagick-CVE-2025-27795.patch
-# CVE-2025-27796 [bsc#1239043], WPG in GraphicsMagick before 1.3.46 mishandles
palette buffer allocation.
-Patch3: GraphicsMagick-CVE-2025-27796.patch
-# use return value of realloc function
-Patch4: GraphicsMagick-return-value.patch
-# CVE-2025-32460 [bsc#1241150], heap-based buffer over-read in ReadJXLImage
-Patch5: GraphicsMagick-CVE-2025-32460.patch
BuildRequires: cups-client
BuildRequires: dcraw
BuildRequires: gcc-c++
++++++ GraphicsMagick-1.3.45.tar.xz -> GraphicsMagick-1.3.46.tar.xz ++++++
++++ 128717 lines of diff (skipped)
++++++ GraphicsMagick-disable-insecure-coders.patch ++++++
--- /var/tmp/diff_new_pack.4nvv3r/_old 2025-12-24 13:15:24.668230267 +0100
+++ /var/tmp/diff_new_pack.4nvv3r/_new 2025-12-24 13:15:24.676230597 +0100
@@ -1,7 +1,7 @@
-Index: GraphicsMagick-1.3.45/coders/pdf.c
+Index: GraphicsMagick-1.3.46/coders/pdf.c
===================================================================
---- GraphicsMagick-1.3.45.orig/coders/pdf.c
-+++ GraphicsMagick-1.3.45/coders/pdf.c
+--- GraphicsMagick-1.3.46.orig/coders/pdf.c
++++ GraphicsMagick-1.3.46/coders/pdf.c
@@ -499,7 +499,7 @@ ModuleExport void RegisterPDFImage(void)
entry->seekable_stream=True;
entry->description="Encapsulated Portable Document Format";
@@ -20,10 +20,10 @@
(void) RegisterMagickInfo(entry);
}
�
-Index: GraphicsMagick-1.3.45/coders/ps.c
+Index: GraphicsMagick-1.3.46/coders/ps.c
===================================================================
---- GraphicsMagick-1.3.45.orig/coders/ps.c
-+++ GraphicsMagick-1.3.45/coders/ps.c
+--- GraphicsMagick-1.3.46.orig/coders/ps.c
++++ GraphicsMagick-1.3.46/coders/ps.c
@@ -456,7 +456,7 @@ ModuleExport void RegisterPSImage(void)
entry->adjoin=False;
entry->description="Adobe Encapsulated PostScript Interchange format";
@@ -69,10 +69,10 @@
(void) RegisterMagickInfo(entry);
}
�
-Index: GraphicsMagick-1.3.45/coders/ps2.c
+Index: GraphicsMagick-1.3.46/coders/ps2.c
===================================================================
---- GraphicsMagick-1.3.45.orig/coders/ps2.c
-+++ GraphicsMagick-1.3.45/coders/ps2.c
+--- GraphicsMagick-1.3.46.orig/coders/ps2.c
++++ GraphicsMagick-1.3.46/coders/ps2.c
@@ -252,7 +252,7 @@ ModuleExport void RegisterPS2Image(void)
entry->seekable_stream=True;
entry->description="Adobe Level II Encapsulated PostScript";
@@ -91,10 +91,10 @@
(void) RegisterMagickInfo(entry);
}
�
-Index: GraphicsMagick-1.3.45/coders/ps3.c
+Index: GraphicsMagick-1.3.46/coders/ps3.c
===================================================================
---- GraphicsMagick-1.3.45.orig/coders/ps3.c
-+++ GraphicsMagick-1.3.45/coders/ps3.c
+--- GraphicsMagick-1.3.46.orig/coders/ps3.c
++++ GraphicsMagick-1.3.46/coders/ps3.c
@@ -394,7 +394,7 @@ ModuleExport void RegisterPS3Image(void)
entry->description="Adobe Level III Encapsulated PostScript";
entry->seekable_stream=MagickTrue;
@@ -113,11 +113,11 @@
(void) RegisterMagickInfo(entry);
}
�
-Index: GraphicsMagick-1.3.45/config/delegates.mgk.in
+Index: GraphicsMagick-1.3.46/config/delegates.mgk.in
===================================================================
---- GraphicsMagick-1.3.45.orig/config/delegates.mgk.in
-+++ GraphicsMagick-1.3.45/config/delegates.mgk.in
-@@ -76,27 +76,27 @@
+--- GraphicsMagick-1.3.46.orig/config/delegates.mgk.in
++++ GraphicsMagick-1.3.46/config/delegates.mgk.in
+@@ -88,27 +88,27 @@
<delegate decode="dot" command='"@DOTDecodeDelegate@" -Tps "%i" -o "%o"' />
<delegate decode="dvi" command='"@DVIDecodeDelegate@" -q -o "%o" "%i"' />
<delegate decode="edit" stealth="True" command='"@EditorDelegate@" -title
"Edit Image Comment" -e vi "%o"' />
@@ -153,7 +153,7 @@
<!-- Read monochrome PDF using Poppler's pdftoppm -->
<delegate decode="poppler-mono" stealth="True" command='"pdftoppm" "-mono"
"-freetype" "yes" "-aa" "yes" "-aaVector" "yes" "-rx" "72" "-ry" "72" "%s" ">"
"%s"' />
-@@ -120,16 +120,16 @@
+@@ -132,16 +132,16 @@
<!-- Write MPEG file using mpeg2encode -->
<delegate encode="mpeg-encode" stealth="True"
command='"@MPEGEncodeDelegate@" "%i" "%o"' />
<!-- Convert PDF to Encapsulated Poscript using Ghostscript -->
@@ -174,12 +174,12 @@
+ <!--delegate decode="ps" encode="print" mode="encode"
command='"@PrintDelegate@" "%i"' /-->
<!-- Read HTML file -->
<delegate decode="shtml" command='"@HTMLDecodeDelegate@" -U -o "%o" "%i"' />
- <delegate encode="show" stealth="True" command='"@GMDelegate@" display
-immutable -delay 0 -window_group %g -title "%l of %f" "%o" &' />
-Index: GraphicsMagick-1.3.45/Makefile.in
+ <delegate encode="show" stealth="True" command='"@GMDelegate@" display
-immutable -delay 0 -window_group %g -title "%l of %f" "%o" &' />
+Index: GraphicsMagick-1.3.46/Makefile.in
===================================================================
---- GraphicsMagick-1.3.45.orig/Makefile.in
-+++ GraphicsMagick-1.3.45/Makefile.in
-@@ -4386,7 +4386,6 @@ TESTS_TESTS = \
+--- GraphicsMagick-1.3.46.orig/Makefile.in
++++ GraphicsMagick-1.3.46/Makefile.in
+@@ -4383,7 +4383,6 @@ TESTS_TESTS = \
tests/rwfile.tap \
tests/rwfile_sized.tap \
tests/rwfile_miff.tap \
@@ -187,10 +187,10 @@
tests/rwfile_deep.tap
TESTS_EXTRA_DIST = \
-Index: GraphicsMagick-1.3.45/tests/rwblob.tap
+Index: GraphicsMagick-1.3.46/tests/rwblob.tap
===================================================================
---- GraphicsMagick-1.3.45.orig/tests/rwblob.tap
-+++ GraphicsMagick-1.3.45/tests/rwblob.tap
+--- GraphicsMagick-1.3.46.orig/tests/rwblob.tap
++++ GraphicsMagick-1.3.46/tests/rwblob.tap
@@ -10,7 +10,7 @@ rwblob=./rwblob
check_types='bilevel gray palette truecolor'
@@ -219,16 +219,16 @@
# FAX format
for type in ${check_types}
do
-Index: GraphicsMagick-1.3.45/tests/rwfile.tap
+Index: GraphicsMagick-1.3.46/tests/rwfile.tap
===================================================================
---- GraphicsMagick-1.3.45.orig/tests/rwfile.tap
-+++ GraphicsMagick-1.3.45/tests/rwfile.tap
+--- GraphicsMagick-1.3.46.orig/tests/rwfile.tap
++++ GraphicsMagick-1.3.46/tests/rwfile.tap
@@ -12,7 +12,7 @@ check_types='bilevel gray palette trueco
check_types_noone='bilevel gray palette truecolor'
# Number of tests we plan to run
--test_plan_fn 857
-+test_plan_fn 807
+-test_plan_fn 897
++test_plan_fn 847
# AAI format
for type in ${check_types}
@@ -295,7 +295,7 @@
# PGM format
for type in ${check_types}
do
-@@ -378,27 +329,6 @@ do
+@@ -406,27 +357,6 @@ do
done
done
++++++ GraphicsMagick-perl-linkage.patch ++++++
--- /var/tmp/diff_new_pack.4nvv3r/_old 2025-12-24 13:15:24.704231750 +0100
+++ /var/tmp/diff_new_pack.4nvv3r/_new 2025-12-24 13:15:24.712232079 +0100
@@ -1,7 +1,7 @@
-Index: GraphicsMagick-1.3.31/PerlMagick/Makefile.PL.in
+Index: GraphicsMagick-1.3.46/PerlMagick/Makefile.PL.in
===================================================================
---- GraphicsMagick-1.3.31.orig/PerlMagick/Makefile.PL.in 2018-12-19
11:03:59.273709484 +0100
-+++ GraphicsMagick-1.3.31/PerlMagick/Makefile.PL.in 2018-12-19
11:06:05.822305744 +0100
+--- GraphicsMagick-1.3.46.orig/PerlMagick/Makefile.PL.in
++++ GraphicsMagick-1.3.46/PerlMagick/Makefile.PL.in
@@ -78,7 +78,7 @@ WriteMakefile
'INSTALLBIN' => $magick_BIN_DIR,
