Public bug reported:
Binary package hint: graphicsmagick
Please grant this FFe for graphicsmagick. Severity is "grave" on ubuntuwire.
This release contains multiple security fixes, Thanks :)
graphicsmagick (1.1.11-1) unstable; urgency=medium
* New upstream version, containing multiple security fixes. Closes: #444266
+ Fixes denial-of-service via malicious DCM and XCF files. (CVE-2007-4985)
+ Fixes integer overflows in multiple coders. (CVE-2007-4986)
+ Fixes sign extension error when reading DIB images. (CVE-2007-4988)
+ For reference, GraphicsMagick was not affected by an off-by-one error
in ImageMagick's ReadBlobString() function. (CVE-2007-4987)
* Magick++/lib/Geometry.cpp: Add missing cstring include to fix build with
gcc 4.3. Closes: #462113
* utilities/gm.1: Fix formatting errors in man page gm(1).
* debian/control: Packages comply with version 3.7.3 of Debian policy.
* debian/graphicsmagick.menu: Move section of gm utility from obsolete
section 'Apps' to current 'Applications'.
-- Daniel Kobras <[EMAIL PROTECTED]> Tue, 26 Feb 2008 21:33:02 +0100
** Affects: graphicsmagick (Ubuntu)
Importance: Undecided
Status: New
** Changed in: graphicsmagick (Ubuntu)
Assignee: (unassigned) => Stefan Ebner (sebner)
Status: New => In Progress
--
[FFe] Please sync graphicsmagick 1.1.11-1 from Debian(Unstable)
https://bugs.launchpad.net/bugs/204349
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
