Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package GraphicsMagick for openSUSE:Factory checked in at 2026-05-20 15:23:19 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/GraphicsMagick (Old) and /work/SRC/openSUSE:Factory/.GraphicsMagick.new.1966 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "GraphicsMagick" Wed May 20 15:23:19 2026 rev:103 rq:1353738 version:1.3.46 Changes: -------- --- /work/SRC/openSUSE:Factory/GraphicsMagick/GraphicsMagick.changes 2026-04-21 12:42:37.404949972 +0200 +++ /work/SRC/openSUSE:Factory/.GraphicsMagick.new.1966/GraphicsMagick.changes 2026-05-20 15:23:42.448130128 +0200 @@ -1,0 +2,7 @@ +Mon May 18 09:20:27 UTC 2026 - Petr Gajdos <[email protected]> + +- added patches + CVE-2026-42050: Stack buffer overflow in XTileImage [bsc#1265048] + * GraphicsMagick-CVE-2026-42050.patch + +------------------------------------------------------------------- New: ---- GraphicsMagick-CVE-2026-42050.patch ----------(New B)---------- New: CVE-2026-42050: Stack buffer overflow in XTileImage [bsc#1265048] * GraphicsMagick-CVE-2026-42050.patch ----------(New E)---------- ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ GraphicsMagick.spec ++++++ --- /var/tmp/diff_new_pack.U1GrUH/_old 2026-05-20 15:23:43.120157767 +0200 +++ /var/tmp/diff_new_pack.U1GrUH/_new 2026-05-20 15:23:43.124157931 +0200 @@ -43,6 +43,8 @@ Patch5: GraphicsMagick-CVE-2026-26284.patch # CVE-2026-33535: Out-of-Bounds write of a zero byte in X11 display interaction [bsc#1260874] Patch6: GraphicsMagick-CVE-2026-33535.patch +# CVE-2026-42050: Stack buffer overflow in XTileImage [bsc#1265048] +Patch7: GraphicsMagick-CVE-2026-42050.patch BuildRequires: cups-client BuildRequires: dcraw BuildRequires: gcc-c++ ++++++ GraphicsMagick-CVE-2026-42050.patch ++++++ Index: GraphicsMagick-1.3.46/magick/display.c =================================================================== --- GraphicsMagick-1.3.46.orig/magick/display.c +++ GraphicsMagick-1.3.46/magick/display.c @@ -12492,7 +12492,8 @@ static Image *MagickXTileImage(Display * if (id < 0) return((Image *) NULL); q=p; - while ((*q != '\n') && (*q != '\0')) + while ((*q != '\n') && (*q != '\0') && + ((size_t) (q-p) < sizeof(filename))) q++; (void) strncpy(filename,p,q-p); filename[q-p]='\0'; @@ -12582,7 +12583,8 @@ static Image *MagickXTileImage(Display * for (p=image->directory; *p != '\0'; p++) { q=p; - while ((*q != '\n') && (*q != '\0')) + while ((*q != '\n') && (*q != '\0') && + ((size_t) (q-p+1) < sizeof(filename))) q++; (void) strncpy(filename,p,q-p); filename[q-p]='\0';
