- trying to overwrite
+/usr/share/man/man1/morph.1.gz, thanks to Andreas Beckmann (Closes:
+#767834).
+
+ -- Bastien Roucariès roucaries.bastien+deb...@gmail.com Sat, 15 Nov 2014
15:47:21 +0100
+
xmorph (1:20140707) unstable; urgency=low
[ A Mennucc1 ]
diff -Nru xmorph-20140707/debian
bug (DOS). Some special crafted JPEG
+files could create a dos due to missing check in
+embeded EXIF properties (EXIF directory offsets
+must be greater than 0). Fix CVE-2014-8716
+(Closes: #768494).
+
+ -- Bastien Roucariès roucaries.bastien+deb...@gmail.com Fri, 07 Nov 2014
21
Package: release.debian.org
Severity: normal
Hi,
imagemagick waiting in NEWs (8:6.9.5.9+dfsg-1) will need a transition to
experimental to unstable;
Next stable version need to be based on this version from a security point of
view. It fix more than 50 securities bugs..;
Moreover this version
control: affect 844357 src:zbar
control: block -1 by 844357
Le jeudi 29 décembre 2016, 16:37:43 CET Emilio Pozuelo Monfort a écrit :
> Control: tags -1 confirmed
> > The break was in 6.9.2-10 released in mid 2015. This is moreover only two
> > version latter than current jessie and I believe it
Package: release.debian.org
Severity: normal
Hi,
Due to #846385 could be possible to get transition for imagemagick.
Sorry for being late but upstream is really sloppy.
The break was in 6.9.2-10 released in mid 2015. This is moreover only two
version latter than current jessie and I believe
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package imagemagick
This fix more than 10 security bugs and a RC bug due to built-using
unblock imagemagick/8:6.9.7.4+dfsg-8
-- System Information:
Debian Release: 9.0
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package imagemagick
change are self contained and security fixes. Will avoid a security release
just after release.
* Fix minor security bugs:
+ CVE-2017-9409: Memory
Package: release.debian.org
Severity: important
Hi,
I have just landed an imagemagick version in experimental, that break the ABI.
Previous ABI used double_t that is not ABI stable...
Could we get a transition of libmagickcore, libmagickwand and libmagick++
I have rebuilded reverse deps a few
Package: release.debian.org
Severity: wishlist
Hi,
I plan to release imagemagick 7 before next stable version. And I want to
coexist imagemagick6 and imagemagick7.
Moreover I wish to allow smooth upgrade between the two
So I open a bug in order to allow discussion with release team.
Main
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: transition
Imagemagick upstream break the API in stable 6 version.
They are a few security bug and I prefer to go to newest pacakge in order to
close the maximum of security bugs without back
Hi,
I am going to ask an exception for imagemagick (see debian-private for reason
of being late). It is a fixing 2 CVEs and an RC bug
Normally it is on the pipe so may be we do not need exception.
Bastien
signature.asc
Description: This is a digitally signed message part.
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: transition
Imagemagick changes some internal structures. Upstream bump so (safe), so ask
for a rebuilt.
Ben file:
title = "imagemagick";
is_affected = .depends ~
Le dimanche 22 octobre 2023, 14:08:20 UTC Sebastian Ramacher a écrit :
> Hi Bastien
>
> On 2023-10-21 20:10:47 +, Bastien Roucariès wrote:
> > Can I go ahead with imagemagick experimental ?
>
> As a year has past since the last mail to the transition bug report: did
>
Hi,
Can I go ahead with imagemagick experimental ?
Thanks
Bastien
signature.asc
Description: This is a digitally signed message part.
Le dimanche 22 octobre 2023, 15:03:50 UTC Sebastian Ramacher a écrit :
> Control: tags -1 confirmed
>
> On 2023-10-22 14:51:42 +, Bastien Roucariès wrote:
> > Le dimanche 22 octobre 2023, 14:08:20 UTC Sebastian Ramacher a écrit :
> > > Hi Bastien
> > >
&
Hi,
adding support to armv6-support will help here
Bastien
-2021-33587 (Closes: #989264, #1032188)
+
+ -- Bastien Roucariès Wed, 01 Mar 2023 13:47:23 +
+
node-css-what (4.0.0-3) unstable; urgency=medium
* Team upload
diff -Nru
node-css-what-4.0.0/debian/patches/0001-Partial-fix-of-reDos-CVE-2022-21222-CVE-2021-33587-a.patch
node-css-what-4.0.0
the range of unsigned char
+(Closes: #1016442)
+ * Fix CVE-2022-32546: Value outside the range of representable
+values of type 'unsigned long' at coders/pcl.c,
+ * Use Salsa CI
+
+ -- Bastien Roucariès Fri, 26 May 2023 07:10:27 +
+
imagemagick (8:6.9.11.60+dfsg-1.3+deb11u1) bullseye
Hi,
I want to have some guidance about CVE-2023-1289
Fixing it will need to add a field recursion in an exported structure... It
will therefore break ABI
We could also disable internal svg coder and fallback on inkscape
You marked the bug no DSA, so maybe we could postpone
Bastien
Hi,
I achieved to get imagemagick 7 build for experimental.
Every package include a version in the package name (except legacy pacakge name
and perl*) so I plan to do some step by step migration, because it is mainly
coinstallable with imagemagick 6.
- upload to experimental a version with
Hi,
I have just uploaded
Bastien
signature.asc
Description: This is a digitally signed message part.
Package: release.debian.org
Severity: important
User: release.debian@packages.debian.org
Usertags: transition
X-Debbugs-CC: ftpmas...@debian.org
Imagemagick will need a new major bump
I achieved to get imagemagick 7 build for experimental (it is only on salsa not
uploaded yet).
Every
Le vendredi 1 décembre 2023, 21:04:12 UTC Helmut Grohne a écrit :
> Hi developers,
>
> I have unfortunate news regarding /usr-merge. I uncovered yet another
> problem that we haven't seen mentioned earlier. We do not yet know how
> to deal with it and it may take some time to come up with a good
Hi,
A gentle remainder about imagemagick7 transition plan.
Many thanks for santiago to review partially it, but I need green light from
release team.
Bastien
signature.asc
Description: This is a digitally signed message part.
Le vendredi 2 février 2024, 16:53:10 UTC Sebastian Ramacher a écrit :
> Control: tags -1 moreinfo
>
> Hi Bastien
>
> On 2024-01-05 22:35:44 +, Bastien Roucariès wrote:
> > Package: release.debian.org
> > Severity: important
> > User: release.debian
gt; Usertags: pu
> > X-Debbugs-Cc: Bastien Roucariès
> > Control: affects -1 + src:json-smart
> > Control: block 1039985 with -1
> > Control: block 1033474 with -1
> >
> > [ Reason ]
> > Two CVEs were fixed in buster-lts, but not yet in bullseye or later,
>
Le samedi 13 avril 2024, 14:01:24 UTC Bastien Roucariès a écrit :
> Le samedi 13 avril 2024, 14:00:00 UTC Moritz Mühlenhoff a écrit :
> Hi,
>
> > Am Tue, Apr 09, 2024 at 10:01:11AM +0200 schrieb Andreas Beckmann:
> > > Package: release.debian.org
> > > Seve
Package: release.debian.org
Severity: normal
Tags: bookworm
X-Debbugs-Cc: zookee...@packages.debian.org
Control: affects -1 + src:zookeeper
User: release.debian@packages.debian.org
Usertags: pu
[ Reason ]
CVE-2024-23944 (Closes: #1066947):
An information disclosure in persistent watchers
Package: release.debian.org
Severity: important
Tags: bookworm
X-Debbugs-Cc: w...@packages.debian.org
Control: affects -1 + src:wpa
User: release.debian@packages.debian.org
Usertags: pu
tags: security
[ Reason ]
CVE-2023-52160 security bug
[ Impact ]
security bug is present
[ Tests ]
Test
Package: release.debian.org
Severity: important
Tags: bullseye
X-Debbugs-Cc: w...@packages.debian.org
Control: affects -1 + src:wpa
User: release.debian@packages.debian.org
Usertags: pu
tags: security
[ Reason ]
CVE-2023-52160 security bug
[ Impact ]
security bug is present
[ Tests ]
Test
Package: release.debian.org
Severity: normal
Tags: bookworm
X-Debbugs-Cc: fos...@packages.debian.org
Control: affects -1 + src:fossil
User: release.debian@packages.debian.org
Usertags: pu
this bug was opened by previous arrangement with maintainer.
[ Reason ]
fossil is affected by a
31 matches
Mail list logo