Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package GraphicsMagick for openSUSE:Factory checked in at 2026-03-22 14:11:32 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/GraphicsMagick (Old) and /work/SRC/openSUSE:Factory/.GraphicsMagick.new.8177 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "GraphicsMagick" Sun Mar 22 14:11:32 2026 rev:100 rq:1341533 version:1.3.46 Changes: -------- --- /work/SRC/openSUSE:Factory/GraphicsMagick/GraphicsMagick.changes 2026-03-19 17:36:45.488270502 +0100 +++ /work/SRC/openSUSE:Factory/.GraphicsMagick.new.8177/GraphicsMagick.changes 2026-03-22 14:11:50.424540035 +0100 @@ -1,0 +2,7 @@ +Fri Mar 20 11:02:38 UTC 2026 - Petr Gajdos <[email protected]> + +- added patches + CVE-2026-28690: missing bounds check in the MNG encoder can lead to a stack buffer overflow (bsc#1259456) + * GraphicsMagick-CVE-2026-28690.patch + +------------------------------------------------------------------- New: ---- GraphicsMagick-CVE-2026-28690.patch ----------(New B)---------- New: CVE-2026-28690: missing bounds check in the MNG encoder can lead to a stack buffer overflow (bsc#1259456) * GraphicsMagick-CVE-2026-28690.patch ----------(New E)---------- ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ GraphicsMagick.spec ++++++ --- /var/tmp/diff_new_pack.9DvMSb/_old 2026-03-22 14:11:51.044565531 +0100 +++ /var/tmp/diff_new_pack.9DvMSb/_new 2026-03-22 14:11:51.044565531 +0100 @@ -1,7 +1,6 @@ # # spec file for package GraphicsMagick # -# Copyright (c) 2026 SUSE LLC # Copyright (c) 2026 SUSE LLC and contributors # # All modifications and additions to the file contributed by third parties @@ -38,6 +37,8 @@ Patch2: GraphicsMagick-CVE-2026-25799.patch # CVE-2026-30883: missing bounds check when encoding a PNG image can lead to a heap buffer over-write (bsc#1259467) Patch3: GraphicsMagick-CVE-2026-30883.patch +# CVE-2026-28690: missing bounds check in the MNG encoder can lead to a stack buffer overflow (bsc#1259456) +Patch4: GraphicsMagick-CVE-2026-28690.patch BuildRequires: cups-client BuildRequires: dcraw BuildRequires: gcc-c++ ++++++ GraphicsMagick-CVE-2026-28690.patch ++++++ Index: GraphicsMagick-1.3.46/coders/png.c =================================================================== --- GraphicsMagick-1.3.46.orig/coders/png.c +++ GraphicsMagick-1.3.46/coders/png.c @@ -10205,6 +10205,14 @@ static unsigned int WriteMNGImage(const have_mng_structure=MagickTrue; write_mng=LocaleCompare(image_info->magick,"MNG") == 0; + + /* + MNG only supports a color palette up to 256 colors + */ + if ((write_mng != MagickFalse) && (image->storage_class == PseudoClass) && + (image->colors > 256)) + image->storage_class=DirectClass; + mng_info->write_png8=LocaleCompare(image_info->magick,"PNG8") == 0; mng_info->write_png24=LocaleCompare(image_info->magick,"PNG24") == 0; mng_info->write_png32=LocaleCompare(image_info->magick,"PNG32") == 0;
