Overview
Request 611509 accepted
- update to 1.3.29:
* Security Fixes:
. GraphicsMagick is now participating in Google's oss-fuzz project
. JNG: Require that the embedded JPEG image have the same dimensions
as the JNG image as provided by JHDR. Avoids a heap write overflow.
. MNG: Arbitrarily limit the number of loops which may be requested by
the MNG LOOP chunk to 512 loops, and provide the '-define
mng:maximum-loops=value' option in case the user wants to change the
limit. This fixes a denial of service caused by large LOOP
specifications.
* Bug fixes:
. DICOM: Pre/post rescale functions are temporarily disabled (until
the implementation is fixed).
. JPEG: Fix regression in last release in which reading some JPEG
files produces the error "Improper call to JPEG library in state
201".
. ICON: Some DIB-based Windows ICON files were reported as corrupt to
an unexpectedly missing opacity mask image.
. In-memory Blob I/O: Don't implicitly increase the allocation size
due to seek offsets.
. MNG: Detect and handle failure to allocate global PLTE. Fix divide
by zero.
. DrawGetStrokeDashArray(): Check for failure to allocate memory.
. BlobToImage(): Now produces useful exception reports to cover the
cases where 'magick' was not set and the file format could not be
deduced from its header.
* API Updates:
. Wand API: Added MagickIsPaletteImage(), MagickIsOpaqueImage(),
MagickIsMonochromeImage(), MagickIsGrayImage(), MagickHasColormap()
based on contributions by Troy Patteson.
Request History
pgajdos created request
- update to 1.3.29:
* Security Fixes:
. GraphicsMagick is now participating in Google's oss-fuzz project
. JNG: Require that the embedded JPEG image have the same dimensions
as the JNG image as provided by JHDR. Avoids a heap write overflow.
. MNG: Arbitrarily limit the number of loops which may be requested by
the MNG LOOP chunk to 512 loops, and provide the '-define
mng:maximum-loops=value' option in case the user wants to change the
limit. This fixes a denial of service caused by large LOOP
specifications.
* Bug fixes:
. DICOM: Pre/post rescale functions are temporarily disabled (until
the implementation is fixed).
. JPEG: Fix regression in last release in which reading some JPEG
files produces the error "Improper call to JPEG library in state
201".
. ICON: Some DIB-based Windows ICON files were reported as corrupt to
an unexpectedly missing opacity mask image.
. In-memory Blob I/O: Don't implicitly increase the allocation size
due to seek offsets.
. MNG: Detect and handle failure to allocate global PLTE. Fix divide
by zero.
. DrawGetStrokeDashArray(): Check for failure to allocate memory.
. BlobToImage(): Now produces useful exception reports to cover the
cases where 'magick' was not set and the file format could not be
deduced from its header.
* API Updates:
. Wand API: Added MagickIsPaletteImage(), MagickIsOpaqueImage(),
MagickIsMonochromeImage(), MagickIsGrayImage(), MagickHasColormap()
based on contributions by Troy Patteson.
licensedigger accepted review
ok
staging-bot added as a reviewer
Being evaluated by staging project "openSUSE:Factory:Staging:adi:112"
staging-bot accepted review
Picked openSUSE:Factory:Staging:adi:112
factory-auto added opensuse-review-team as a reviewer
Please review sources
factory-auto added repo-checker as a reviewer
Please review build success
factory-auto accepted review
Check script succeeded
repo-checker accepted review
cycle and install check passed
dimstar accepted review
staging-bot accepted review
ready to accept
staging-bot approved review
ready to accept
dimstar_suse accepted request
Accept to openSUSE:Factory