------------------------------------------------------------------- Wed Mar 13 09:02:50 UTC 2019 - pgajdos@suse.com - security update - added patches CVE-2019-7175 [bsc#1128649] + ImageMagick-CVE-2019-7175.patch ------------------------------------------------------------------- Mon Feb 11 17:18:31 UTC 2019 - Petr Gajdos - security update (pdf.c): * CVE-2019-7397 [bsc#1124366] + ImageMagick-CVE-2019-7397.patch ------------------------------------------------------------------- Mon Feb 11 14:55:08 UTC 2019 - Petr Gajdos - security update (dib.c) * CVE-2019-7398 [bsc#1124365] + ImageMagick-CVE-2019-7398.patch ------------------------------------------------------------------- Thu Jan 3 10:26:34 UTC 2019 - Petr Gajdos - security update (bmp.c): * CVE-2018-20467 [bsc#1120381] + ImageMagick-CVE-2018-20467.patch ------------------------------------------------------------------- Thu Nov 1 08:12:05 UTC 2018 - Petr Gajdos - security update (msl.c): * CVE-2018-18544 [bsc#1113064] + ImageMagick-CVE-2018-18544.patch ------------------------------------------------------------------- Thu Oct 25 10:48:31 UTC 2018 - Petr Gajdos - security update (mpc.c, cache.c): * CVE-2017-11532 [bsc#1050129] + ImageMagick-CVE-2017-11532.patch ------------------------------------------------------------------- Tue Oct 23 17:16:45 UTC 2018 - Petr Gajdos - debug_build: build more suitable for debugging ------------------------------------------------------------------- Tue Oct 23 16:44:42 UTC 2018 - Petr Gajdos - fix regression in cip coder [bsc#1050635#c13] % ImageMagick-CVE-2017-11639.patch ------------------------------------------------------------------- Mon Oct 22 13:41:12 UTC 2018 - Petr Gajdos - security update (pict.c): * CVE-2017-14997 [bsc#1112399] + ImageMagick-CVE-2017-14997.patch ------------------------------------------------------------------- Mon Oct 22 11:35:45 UTC 2018 - Petr Gajdos - fix regression in pict coder [bsc#1107609#c24] % ImageMagick-CVE-2018-16644.patch ------------------------------------------------------------------- Mon Oct 15 10:09:01 UTC 2018 - Petr Gajdos - fix cut.c:InsertRow() argument order to fully fix [bsc#1107616] % ImageMagick-CVE-2018-16642.patch - do not alter meta.c:RegisterMETAImage() signature at all % ImageMagick-meta.c-update.patch ------------------------------------------------------------------- Fri Oct 12 16:51:07 UTC 2018 - Petr Gajdos - security update (bmp.c) * CVE-2018-18024 [bsc#1111069] * ImageMagick-CVE-2018-18024.patch ------------------------------------------------------------------- Thu Oct 11 11:54:41 UTC 2018 - Petr Gajdos - security update (pcx.c) * CVE-2018-18016 [bsc#1111072] % ImageMagick-CVE-2017-13058.patch renamed to ImageMagick-CVE-2017-13058,CVE-2018-18016.patch ------------------------------------------------------------------- Thu Oct 11 07:38:16 UTC 2018 - Petr Gajdos - security update (sgi.c) * CVE-2018-17965 [bsc#1110747] + ImageMagick-CVE-2018-17965.patch ------------------------------------------------------------------- Wed Oct 10 08:50:25 UTC 2018 - Petr Gajdos - security update (pdb.c): * CVE-2018-17966 [bsc#1110746] + ImageMagick-CVE-2018-17966.patch ------------------------------------------------------------------- Wed Sep 19 06:20:58 UTC 2018 - Petr Gajdos - security update (msl.c) * CVE-2017-17934 [bsc#1074170] + ImageMagick-CVE-2017-17934.patch ------------------------------------------------------------------- Sat Sep 15 09:55:14 UTC 2018 - Petr Gajdos - security update (meta.c): * CVE-2018-16750 [bsc#1108283] + ImageMagick-meta.c-update.patch ------------------------------------------------------------------- Sat Sep 15 09:53:40 UTC 2018 - Petr Gajdos - security update (png.c): * CVE-2018-16749 [bsc#1108282] + ImageMagick-CVE-2018-16749.patch ------------------------------------------------------------------- Tue Sep 11 10:38:04 UTC 2018 - Petr Gajdos - security update (cut.c): * CVE-2018-16642 [bsc#1107616] + ImageMagick-CVE-2018-16642.patch ------------------------------------------------------------------- Mon Sep 10 14:55:35 UTC 2018 - Petr Gajdos - security update (dcm.c, pict.c, pwp.c): * CVE-2018-16643 [bsc#1107612] + ImageMagick-CVE-2018-16643.patch ------------------------------------------------------------------- Mon Sep 10 10:17:12 UTC 2018 - Petr Gajdos - security update (pict.c): * CVE-2018-16644 [bsc#1107609] + ImageMagick-CVE-2018-16644.patch ------------------------------------------------------------------- Mon Sep 10 08:20:35 UTC 2018 - Petr Gajdos - security update (bmp.c, dib.c): * CVE-2018-16645 [bsc#1107604] + ImageMagick-CVE-2018-16645.patch ------------------------------------------------------------------- Wed Sep 5 11:47:29 UTC 2018 - pgajdos@suse.com - security update (psd.c) * CVE-2018-16413 [bsc#1106989], CVE-2018-16412 [bsc#1106996] + ImageMagick-CVE-2018-16412,16413.patch (formerly ImageMagick-CVE-2018-16413.patch) ------------------------------------------------------------------- Mon Sep 3 09:27:59 UTC 2018 - pgajdos@suse.com - security update (xbm.c) * CVE-2018-16323 [bsc#1106855] + ImageMagick-CVE-2018-16323.patch ------------------------------------------------------------------- Wed Aug 22 10:29:33 UTC 2018 - pgajdos@suse.com - hide PS, XPS and PDF coders into */vulnerable [bsc#1105592] ------------------------------------------------------------------- Tue Aug 7 13:40:28 UTC 2018 - pgajdos@suse.com - security update (pcd.c): * CVE-2018-14435 [bsc#1102007] + ImageMagick-CVE-2018-14435.patch * fix build with zlib 1.2.7 ImageMagick-zlib-1.2.7.patch ------------------------------------------------------------------- Tue Aug 7 13:11:21 UTC 2018 - pgajdos@suse.com - security update (miff.c): * CVE-2018-14436 [bsc#1102005] + ImageMagick-CVE-2018-14436.patch ------------------------------------------------------------------- Tue Aug 7 12:52:39 UTC 2018 - pgajdos@suse.com - security update (meta.c): * CVE-2018-14437 [bsc#1102004] + ImageMagick-CVE-2018-14437.patch ------------------------------------------------------------------- Mon Aug 6 15:43:00 UTC 2018 - pgajdos@suse.com - security update (mpc.c): * CVE-2018-14434 [bsc#1102003] + ImageMagick-CVE-2018-14434.patch ------------------------------------------------------------------- Mon Jun 25 17:26:29 UTC 2018 - pgajdos@suse.com - security update (dib.c and bmp.c) * CVE-2018-12600 [bsc#1098545] + ImageMagick-CVE-2018-12600.patch * CVE-2018-12599 [bsc#1098546] + ImageMagick-CVE-2018-12599.patch ------------------------------------------------------------------- Wed Jun 20 14:47:10 UTC 2018 - pgajdos@suse.com - security update (rgb.c, cmyk.c, gray.c, ycbcr.c) * CVE-2018-10805 and similar memory leaks [bsc#1095812] + ImageMagick-CVE-2018-10805.patch ------------------------------------------------------------------- Wed May 30 09:54:42 UTC 2018 - pgajdos@suse.com - security update (core) * CVE-2017-13758 [bsc#1056277] + ImageMagick-CVE-2017-13758.patch ------------------------------------------------------------------- Wed May 23 13:04:11 UTC 2018 - pgajdos@suse.com - security update (sun.c) * CVE-2018-11251 [bsc#1094237] + ImageMagick-CVE-2018-11251.patch ------------------------------------------------------------------- Wed May 23 09:55:23 UTC 2018 - pgajdos@suse.com - security update (miff.c) * CVE-2017-18271 [bsc#1094204] + ImageMagick-CVE-2017-18271.patch ------------------------------------------------------------------- Fri Apr 20 11:51:55 UTC 2018 - pgajdos@suse.com - security update (png.c) * CVE-2018-10177 [bsc#1089781] + ImageMagick-CVE-2018-10177.patch ------------------------------------------------------------------- Wed Apr 18 09:34:56 UTC 2018 - pgajdos@suse.com - security update (tiff.c) * CVE-2018-8960 [bsc#1086782] + ImageMagick-CVE-2018-8960.patch ------------------------------------------------------------------- Fri Apr 13 17:45:35 UTC 2018 - pgajdos@suse.com - security update (png.c) * CVE-2018-9018 [bsc#1086773] + ImageMagick-CVE-2018-9018.patch ------------------------------------------------------------------- Fri Apr 13 14:56:19 UTC 2018 - pgajdos@suse.com - security update (wand) * CVE-2017-18252 [bsc#1087033] + ImageMagick-CVE-2017-18252.patch ------------------------------------------------------------------- Tue Apr 10 18:15:59 UTC 2018 - pgajdos@suse.com - security update (gif.c) * CVE-2017-18254 [bsc#1087027] + ImageMagick-CVE-2017-18254.patch ------------------------------------------------------------------- Tue Apr 10 11:36:57 UTC 2018 - pgajdos@suse.com - security update (core) * CVE-2017-10928 [bsc#1047356] + ImageMagick-CVE-2017-18251.patch ------------------------------------------------------------------- Fri Apr 6 11:14:31 UTC 2018 - pgajdos@suse.com - security update (pcd.c) * CVE-2017-18251 [bsc#1087037] + ImageMagick-CVE-2017-18251.patch - fixed patches (thanks to patch-2.7.6): . ImageMagick-CVE-2017-1000476.patch ------------------------------------------------------------------- Wed Mar 21 10:34:01 UTC 2018 - pgajdos@suse.com - security update (ept.c) * CVE-2018-8804 [bsc#1086011] + ImageMagick-CVE-2018-8804.patch ------------------------------------------------------------------- Tue Mar 20 10:56:29 UTC 2018 - pgajdos@suse.com - security update (core) * CVE-2017-11524 [bsc#1050087] + ImageMagick-CVE-2017-11524.patch ------------------------------------------------------------------- Tue Mar 6 12:45:05 UTC 2018 - pgajdos@suse.com - security update (png.c) * CVE-2017-18219 [bsc#1084060] + ImageMagick-CVE-2017-18219.patch ------------------------------------------------------------------- Tue Mar 6 09:52:11 UTC 2018 - pgajdos@suse.com - security update (miff.c) * CVE-2017-9500 [bsc#1043290] + ImageMagick-CVE-2017-9500.patch ------------------------------------------------------------------- Wed Feb 28 13:05:22 UTC 2018 - pgajdos@suse.com - security update (core) * CVE-2017-16353 [bsc#1066170] + ImageMagick-CVE-2017-16353.patch * CVE-2017-16352 [bsc#1066168] + ImageMagick-CVE-2017-16352.patch * CVE-2017-14314 [bsc#1058630] + ImageMagick-CVE-2017-14314.patch * CVE-2017-13768 [bsc#1056434] + ImageMagick-CVE-2017-13768.patch * CVE-2017-14505 [bsc#1059735] + ImageMagick-CVE-2017-14505.patch ------------------------------------------------------------------- Mon Feb 26 13:58:40 UTC 2018 - pgajdos@suse.com - security update (tiff.c): * CVE-2018-7443 [bsc#1082792] + ImageMagick-CVE-2018-7443.patch ------------------------------------------------------------------- Mon Feb 26 13:30:43 UTC 2018 - pgajdos@suse.com - security update (emf.c): * CVE-2017-15016 [bsc#1082291] + ImageMagick-CVE-2017-15016.patch ------------------------------------------------------------------- Mon Feb 26 13:10:12 UTC 2018 - pgajdos@suse.com - security update (png.c): * CVE-2017-15017 [bsc#1082283] + ImageMagick-CVE-2017-15017.patch ------------------------------------------------------------------- Mon Feb 26 12:16:04 UTC 2018 - pgajdos@suse.com - security update (viff.c): * CVE-2017-12692 [bsc#1082362] + ImageMagick-CVE-2017-12692.patch ------------------------------------------------------------------- Mon Feb 26 12:14:07 UTC 2018 - pgajdos@suse.com - security update (bmp.c): * CVE-2017-12693 [bsc#1082348] + ImageMagick-CVE-2017-12693.patch ------------------------------------------------------------------- Wed Feb 21 13:06:15 UTC 2018 - pgajdos@suse.com - security update (icon.c): * CVE-2017-9405 [bsc#1042911] + ImageMagick-CVE-2017-9405.patch ------------------------------------------------------------------- Wed Feb 21 12:31:32 UTC 2018 - pgajdos@suse.com - security update (dib.c): * CVE-2017-11528 [bsc#1050119] + ImageMagick-CVE-2017-11528.patch ------------------------------------------------------------------- Wed Feb 21 11:59:24 UTC 2018 - pgajdos@suse.com - security update (ept.c): * CVE-2017-11530 [bsc#1050122] + ImageMagick-CVE-2017-11530.patch ------------------------------------------------------------------- Wed Feb 21 11:12:13 UTC 2018 - pgajdos@suse.com - security update (uil.c): * CVE-2017-11533 [bsc#1050132] + ImageMagick-CVE-2017-11533.patch ------------------------------------------------------------------- Tue Feb 20 20:38:42 UTC 2018 - pgajdos@suse.com - security update (map.c): * CVE-2017-12663 [bsc#1052754] + ImageMagick-CVE-2017-12663.patch ------------------------------------------------------------------- Tue Feb 20 14:44:22 UTC 2018 - pgajdos@suse.com - security update (wpg.c): * CVE-2017-17682 [bsc#1072898] + ImageMagick-CVE-2017-17682.patch ------------------------------------------------------------------- Fri Feb 16 13:40:11 UTC 2018 - pgajdos@suse.com - security update (msl.c): * CVE-2017-12427 [bsc#1052248] + ImageMagick-CVE-2017-12427.patch ------------------------------------------------------------------- Fri Feb 16 06:57:17 UTC 2018 - pgajdos@suse.com - security update (mvg.c): * CVE-2017-12566 [bsc#1052472] + ImageMagick-CVE-2017-12566.patch ------------------------------------------------------------------- Thu Feb 15 07:35:36 UTC 2018 - pgajdos@suse.com - security update (pcl.c): * CVE-2017-11637 [bsc#1050669] + ImageMagick-CVE-2017-11637.patch ------------------------------------------------------------------- Wed Feb 14 09:57:35 UTC 2018 - pgajdos@suse.com - security update (map.c): * CVE-2017-11638, CVE-2017-11642 [bsc#1050617] + ImageMagick-CVE-2017-11638,11642.patch ------------------------------------------------------------------- Tue Feb 13 15:49:48 UTC 2018 - pgajdos@suse.com - security update (miff.c): * CVE-2017-13131 [bsc#1055229] + ImageMagick-CVE-2017-13131.patch ------------------------------------------------------------------- Tue Feb 13 13:10:04 UTC 2018 - pgajdos@suse.com - security update (xwd.c): * CVE-2017-11166 [bsc#1048110] + ImageMagick-CVE-2017-11166.patch ------------------------------------------------------------------- Tue Feb 13 12:32:18 UTC 2018 - pgajdos@suse.com - security update (pdb.c): * CVE-2017-12674 [bsc#1052711] + ImageMagick-CVE-2017-12674.patch ------------------------------------------------------------------- Fri Feb 9 09:33:44 UTC 2018 - pgajdos@suse.com - security update (dcm.c): * CVE-2018-6405 [bsc#1078433] + ImageMagick-CVE-2018-6405.patch ------------------------------------------------------------------- Wed Feb 7 12:22:39 UTC 2018 - pgajdos@suse.com - security update (jpeg.c): * CVE-2017-11450 [bsc#1049374] + ImageMagick-CVE-2017-11450.patch * CVE-2017-11448 [bsc#1049375] + ImageMagick-CVE-2017-11448.patch ------------------------------------------------------------------- Tue Feb 6 16:22:28 UTC 2018 - pgajdos@suse.com - security update (pcx.c): * CVE-2017-12432 [bsc#1052254] + ImageMagick-CVE-2017-12432.patch * CVE-2017-12668 [bsc#1052688] + ImageMagick-CVE-2017-12668.patch * CVE-2017-14224 [bsc#1058009] + ImageMagick-CVE-2017-14224.patch * CVE-2017-13058 [bsc#1055069] + ImageMagick-CVE-2017-13058.patch ------------------------------------------------------------------- Wed Jan 31 12:51:10 UTC 2018 - pgajdos@suse.com - security update (palm.c): * CVE-2017-9407 [bsc#1042824] + ImageMagick-CVE-2017-9407.patch * CVE-2017-11537 [bsc#1050048] + ImageMagick-CVE-2017-11537.patch * CVE-2017-12664 [bsc#1052750] + ImageMagick-CVE-2017-12664.patch ------------------------------------------------------------------- Wed Jan 31 10:30:54 UTC 2018 - pgajdos@suse.com - security update (meta.c): * CVE-2017-12418 [bsc#1052207] + ImageMagick-CVE-2017-12418.patch ------------------------------------------------------------------- Tue Jan 30 13:06:13 UTC 2018 - pgajdos@suse.com - security update (pict.c): * CVE-2017-12665 [bsc#1052747] + ImageMagick-CVE-2017-12665.patch * CVE-2017-12654 [bsc#1052761] + ImageMagick-CVE-2017-12654.patch * CVE-2017-17885 [bsc#1074119] + ImageMagick-CVE-2017-17885.patch ------------------------------------------------------------------- Tue Jan 30 12:14:08 UTC 2018 - pgajdos@suse.com - security update (tiff.c): * CVE-2017-18028 [bsc#1076182] + ImageMagick-CVE-2017-18028.patch ------------------------------------------------------------------- Fri Jan 26 11:58:40 UTC 2018 - pgajdos@suse.com - security update (pwp.c): * fixed small leak [bsc#1074309] + ImageMagick-SignatureImage-quantum_info-leak.patch ------------------------------------------------------------------- Wed Jan 24 12:16:28 UTC 2018 - pgajdos@suse.com - security update (bmp.c): * CVE-2018-5685 [bsc#1075939] + ImageMagick-CVE-2018-5685.patch ------------------------------------------------------------------- Wed Jan 24 10:09:04 UTC 2018 - pgajdos@suse.com - security update (cip.c): * CVE-2017-11639 [bsc#1050635] + ImageMagick-CVE-2017-11639.patch ------------------------------------------------------------------- Wed Jan 24 10:07:17 UTC 2018 - pgajdos@suse.com - secruity update (cin.c): * CVE-2017-11525 [bsc#1050098] + ImageMagick-CVE-2017-11525.patch ------------------------------------------------------------------- Mon Jan 22 10:59:14 UTC 2018 - pgajdos@suse.com - fix a memory leak in svg.c [bsc#1074120c#14] ------------------------------------------------------------------- Tue Jan 16 10:27:13 UTC 2018 - pgajdos@suse.com - security update (png.c): * CVE-2017-9262 [bsc#1043353] * CVE-2017-9261 [bsc#1043354] * CVE-2017-10995 [bsc#1047908] * CVE-2017-11539 [bsc#1050037] * CVE-2017-11505 [bsc#1050072] * CVE-2017-11526 [bsc#1050100] * CVE-2017-11750 [bsc#1051442] * CVE-2017-12565 [bsc#1052470] * CVE-2017-12676 [bsc#1052708] * CVE-2017-12673 [bsc#1052717] * CVE-2017-12671 [bsc#1052721] * CVE-2017-12643 [bsc#1052768] * CVE-2017-12641 [bsc#1052777] * CVE-2017-12640 [bsc#1052781] * CVE-2017-12935 [bsc#1054600] * CVE-2017-13147 [bsc#1055374] * CVE-2017-13142 [bsc#1055455] * CVE-2017-13141 [bsc#1055456] * CVE-2017-14103 [bsc#1057000] * CVE-2017-14649 [bsc#1060162] * CVE-2017-15218 [bsc#1062752] * CVE-2017-17504 [bsc#1072362] * CVE-2017-17879 [bsc#1074125] * CVE-2017-17914 [bsc#1074185] * CVE-2017-17884 [bsc#1074120] * CVE-2018-16640 [bsc#1107619] - added patches + ImageMagick-CVE-2017-9262.patch + ImageMagick-CVE-2017-9261.patch + ImageMagick-CVE-2017-10995.patch + ImageMagick-CVE-2017-11539.patch + ImageMagick-CVE-2017-11505,11526.patch + ImageMagick-CVE-2017-12565,12641.patch + ImageMagick-CVE-2017-11750,12676,12643.patch + ImageMagick-CVE-2017-12673.patch + ImageMagick-CVE-2017-12671,13141.patch + ImageMagick-CVE-2017-12640.patch + ImageMagick-CVE-2017-13142.patch + ImageMagick-CVE-2017-15218.patch + ImageMagick-CVE-2017-17504.patch + ImageMagick-CVE-2017-17879.patch + ImageMagick-CVE-2017-17914.patch + ImageMagick-png.c-other-fixes.patch + ImageMagick-CVE-2017-17884.patch ------------------------------------------------------------------- Tue Jan 9 12:37:52 UTC 2018 - pgajdos@suse.com - security update (pattern.c): * CVE-2018-5246 [bsc#1074973] + ImageMagick-CVE-2017-5246.patch ------------------------------------------------------------------- Tue Jan 9 12:16:10 UTC 2018 - pgajdos@suse.com - security update (core): * CVE-2017-18022 [bsc#1074975] + ImageMagick-CVE-2017-18022.patch ------------------------------------------------------------------- Tue Jan 9 12:13:21 UTC 2018 - pgajdos@suse.com - security update (rla.c): * CVE-2018-5247 [bsc#1074969] + ImageMagick-CVE-2018-5247.patch ------------------------------------------------------------------- Mon Jan 8 11:08:58 UTC 2018 - pgajdos@suse.com - security update (mat.c): * CVE-2017-12672 [bsc#1052720] * CVE-2017-13060 [bsc#1055065] * CVE-2017-11724 [bsc#1051446] * CVE-2017-12670 [bsc#1052731] * CVE-2017-12667 [bsc#1052732] * CVE-2017-13146 [bsc#1055323] * CVE-2017-10800 [bsc#1047044] * CVE-2017-13648 [bsc#1055434] * CVE-2017-11141 [bsc#1047898] * CVE-2017-11529 [bsc#1050120] * CVE-2017-12564 [bsc#1052468] * CVE-2017-12434 [bsc#1052550] * CVE-2017-12675 [bsc#1052710] * CVE-2017-14326 [bsc#1058640] * CVE-2017-11644 [bsc#1050606] * CVE-2017-13658 [bsc#1055855] * CVE-2017-14533 [bsc#1059751] * CVE-2017-17881 [bsc#1074123] * CVE-2017-18029 [bsc#1076021] * CVE-2017-18027 [bsc#1076051] - added ImageMagick-mat.c-update.patch, update of mat.c to 6.9.9-31's version ------------------------------------------------------------------- Fri Jan 5 10:39:27 UTC 2018 - pgajdos@suse.com - security update (dds.c): * CVE-2017-1000476 [bsc#1074610] + ImageMagick-CVE-2017-1000476.patch ------------------------------------------------------------------- Wed Jan 3 09:34:39 UTC 2018 - pgajdos@suse.com - security update (mpc.c): * CVE-2017-9409 [bsc#1042948] + ImageMagick-CVE-2017-9409.patch * CVE-2017-11449 [bsc#1049373] + ImageMagick-CVE-2017-11449.patch * CVE-2017-12430 [bsc#1052252], CVE-2017-12429 [bsc#1052251] + ImageMagick-CVE-2017-12430,12429.patch * CVE-2017-12642 [bsc#1052771] + ImageMagick-CVE-2017-12642.patch * CVE-2017-14249 [bsc#1058082] + ImageMagick-CVE-2017-14249.patch ------------------------------------------------------------------- Wed Jan 3 09:02:47 UTC 2018 - pgajdos@suse.com - security update (core): * CVE-2017-1000445 [bsc#1074425] + ImageMagick-CVE-2017-1000445.patch ------------------------------------------------------------------- Tue Jan 2 11:42:22 UTC 2018 - pgajdos@suse.com - security update (xpm.c): * CVE-2017-11751 [bsc#1051412] + ImageMagick-CVE-2017-11751.patch * CVE-2017-17680, CVE-2017-17882 [bsc#1072902], [bsc#1074122] + ImageMagick-CVE-2017-17680,17882.patch ------------------------------------------------------------------- Thu Dec 14 10:43:40 UTC 2017 - pgajdos@suse.com - security update (xcf.c): * CVE-2017-14343, CVE-2017-12691 [bsc#1058422], [bsc#1082363] ImageMagick-CVE-2017-14343,12691.patch ------------------------------------------------------------------- Wed Dec 13 15:00:52 UTC 2017 - pgajdos@suse.com - security update (pnm.c): * CVE-2017-14042 [bsc#1056550] + ImageMagick-CVE-2017-14042.patch ------------------------------------------------------------------- Tue Dec 12 11:22:44 UTC 2017 - pgajdos@suse.com - security update (psd.c): * CVE-2017-15281 [bsc#1063049] + ImageMagick-CVE-2017-15281.patch * CVE-2017-13061 [bsc#1055063] + ImageMagick-CVE-2017-13061.patch * CVE-2017-12563 [bsc#1052460] + ImageMagick-CVE-2017-12563.patch * CVE-2017-14174 [bsc#1057723] + ImageMagick-CVE-2017-14174.patch ------------------------------------------------------------------- Mon Dec 11 15:11:06 UTC 2017 - pgajdos@suse.com - security update (meta.c): * CVE-2017-13062 [bsc#1055053] + ImageMagick-CVE-2017-13062.patch ------------------------------------------------------------------- Mon Dec 11 13:47:54 UTC 2017 - pgajdos@suse.com - security update (gif.c): * CVE-2017-15277 [bsc#1063050] + ImageMagick-CVE-2017-15277.patch ------------------------------------------------------------------- Wed Dec 6 09:24:49 UTC 2017 - pgajdos@suse.com - security update (rle.c): * CVE-2017-14733 [bsc#1060577] + ImageMagick-CVE-2017-14733.patch ------------------------------------------------------------------- Tue Dec 5 14:38:50 UTC 2017 - pgajdos@suse.com - security update (magick.c): * CVE-2017-11752 [bsc#1051441] + ImageMagick-CVE-2017-11752.patch ------------------------------------------------------------------- Tue Dec 5 13:31:59 UTC 2017 - pgajdos@suse.com - security update (pdf.c): * CVE-2017-12662 [bsc#1052758] + ImageMagick-CVE-2017-12662.patch ------------------------------------------------------------------- Tue Dec 5 10:01:48 UTC 2017 - pgajdos@suse.com - security update (ps.c): * CVE-2017-11535 [bsc#1050139] + ImageMagick-CVE-2017-11535.patch * CVE-2017-14172 [bsc#1057730] + ImageMagick-CVE-2017-14172.patch ------------------------------------------------------------------- Mon Dec 4 18:59:21 UTC 2017 - pgajdos@suse.com - security update (dcm.c): * CVE-2017-12140, CVE-2017-12644 [bsc#1052764] [bsc#1051847] + ImageMagick-CVE-2017-12140,12644.patch ------------------------------------------------------------------- Mon Dec 4 13:25:33 UTC 2017 - pgajdos@suse.com - security update (dpx.c): * CVE-2017-11188 [bsc#1048457] + ImageMagick-CVE-2017-11188.patch * CVE-2017-11527 [bsc#1050116] + ImageMagick-CVE-2017-11527.patch ------------------------------------------------------------------- Tue Nov 28 11:07:09 UTC 2017 - pgajdos@suse.com - security update (tiff.c): * CVE-2017-14607 [bsc#1059778] + ImageMagick-CVE-2017-14607.patch * CVE-2017-11640 [bsc#1050632] + ImageMagick-CVE-2017-11640.patch ------------------------------------------------------------------- Tue Nov 21 11:20:15 UTC 2017 - pgajdos@suse.com - security update (wpg.c): * CVE-2017-14342 [bsc#1058485] + ImageMagick-CVE-2017-14342.patch * CVE-2017-14341 [bsc#1058637] + ImageMagick-CVE-2017-14341.patch * CVE-2017-16546 [bsc#1067181] + ImageMagick-CVE-2017-16546.patch * CVE-2017-16545 [bsc#1067184] + GraphicsMagick-CVE-2017-16545.patch ------------------------------------------------------------------- Tue Nov 7 15:42:12 UTC 2017 - pgajdos@suse.com - security update: * CVE-2017-14175 [bsc#1057719] + ImageMagick-CVE-2017-14175.patch ------------------------------------------------------------------- Tue Nov 7 07:56:02 UTC 2017 - pgajdos@suse.com - security update: * CVE-2017-13769 [bsc#1056432] + ImageMagick-CVE-2017-13769.patch ------------------------------------------------------------------- Mon Nov 6 15:11:28 UTC 2017 - pgajdos@suse.com - security update: * CVE-2017-13134 [bsc#1055214] + ImageMagick-CVE-2017-13134.patch ------------------------------------------------------------------- Mon Nov 6 13:39:06 UTC 2017 - pgajdos@suse.com - security update: * CVE-2017-11478 [bsc#1049796] + ImageMagick-CVE-2017-11478.patch ------------------------------------------------------------------- Mon Nov 6 12:45:14 UTC 2017 - pgajdos@suse.com - security update: * CVE-2017-15930 [bsc#1066003] + ImageMagick-CVE-2017-15930.patch ------------------------------------------------------------------- Fri Nov 3 09:04:16 UTC 2017 - pgajdos@suse.com - security update: * CVE-2017-12983 [bsc#1054757] + ImageMagick-CVE-2017-12983.patch ------------------------------------------------------------------- Wed Nov 1 12:54:30 UTC 2017 - pgajdos@suse.com - security update: * CVE-2017-14531 [bsc#1059666] + ImageMagick-CVE-2017-14531.patch ------------------------------------------------------------------- Wed Nov 1 11:01:02 UTC 2017 - pgajdos@suse.com - security update: * CVE-2017-12435 [bsc#1052553] + ImageMagick-CVE-2017-12435.patch ------------------------------------------------------------------- Wed Nov 1 09:31:08 UTC 2017 - pgajdos@suse.com - security update: * CVE-2017-12587 [bsc#1052450] + ImageMagick-CVE-2017-12587.patch ------------------------------------------------------------------- Tue Oct 31 16:34:49 UTC 2017 - pgajdos@suse.com - security update: * CVE-2017-14173 [bsc#1057729] + ImageMagick-CVE-2017-14173.patch ------------------------------------------------------------------- Tue Oct 24 15:10:42 UTC 2017 - pgajdos@suse.com - security update: * CVE-2017-11534 [bsc#1050135] + ImageMagick-CVE-2017-11534.patch ------------------------------------------------------------------- Mon Oct 23 13:08:37 UTC 2017 - pgajdos@suse.com - security update: * CVE-2017-13133 [bsc#1055219] + ImageMagick-CVE-2017-13133.patch ------------------------------------------------------------------- Mon Oct 23 12:02:51 UTC 2017 - pgajdos@suse.com - security update: * CVE-2017-13139 [bsc#1055430] + ImageMagick-CVE-2017-13139.patch ------------------------------------------------------------------- Fri Oct 6 13:17:52 UTC 2017 - pgajdos@suse.com - security update: * CVE-2017-15033 [bsc#1061873] + ImageMagick-CVE-2017-15033.patch ------------------------------------------------------------------- Fri Jul 21 14:52:27 UTC 2017 - pgajdos@suse.com - security update: * CVE-2017-11403 [bsc#1049072] + ImageMagick-CVE-2017-11403.patch ------------------------------------------------------------------- Wed Jun 28 14:54:07 UTC 2017 - pgajdos@suse.cz - security update * CVE-2017-9439 [bsc#1042826] + ImageMagick-CVE-2017-9439.patch * CVE-2017-9501 [bsc#1043289] + ImageMagick-CVE-2017-9501.patch ------------------------------------------------------------------- Tue May 30 10:24:45 UTC 2017 - pgajdos@suse.com - security update: * CVE-2017-9143 [bsc#1040306] + ImageMagick-CVE-2017-9143.patch * CVE-2017-9142 [bsc#1040304] + ImageMagick-CVE-2017-9142.patch * CVE-2017-9141 [bsc#1040303] + ImageMagick-CVE-2017-9141.patch * CVE-2017-9144 [bsc#1040332] + ImageMagick-CVE-2017-9144.patch ------------------------------------------------------------------- Mon May 22 10:33:44 UTC 2017 - pgajdos@suse.com - security update: * CVE-2017-9098 [bsc#1040025] + ImageMagick-CVE-2017-9098.patch ------------------------------------------------------------------- Tue May 2 12:33:53 UTC 2017 - pgajdos@suse.com - security update: * CVE-2017-8344 [bsc#1036978] + ImageMagick-CVE-2017-8344.patch * CVE-2017-8345, CVE-2017-8350 [bsc#1036980] [bsc#1036985] + ImageMagick-CVE-2017-8345,8350.patch * CVE-2017-8346 [bsc#1036981] + ImageMagick-CVE-2017-8346.patch * CVE-2017-8357 [bsc#1036976] + ImageMagick-CVE-2017-8357.patch * CVE-2017-8348 [bsc#1036983] + ImageMagick-CVE-2017-8348.patch * CVE-2017-8349 [bsc#1036984] + ImageMagick-CVE-2017-8349.patch * CVE-2017-8351 [bsc#1036986] + ImageMagick-CVE-2017-8351.patch * CVE-2017-8352 [bsc#1036987] + ImageMagick-CVE-2017-8352.patch * CVE-2017-8353 [bsc#1036988] + ImageMagick-CVE-2017-8353.patch * CVE-2017-8354 [bsc#1036989] + ImageMagick-CVE-2017-8354.patch * CVE-2017-8355 [bsc#1036990] + ImageMagick-CVE-2017-8355.patch * CVE-2017-7606 [bsc#1033091] + ImageMagick-CVE-2017-7606.patch * CVE-2017-8765 [bsc#1037527] + ImageMagick-CVE-2017-8765.patch * CVE-2017-8830 [bsc#1038000] + ImageMagick-CVE-2017-8830.patch - use defined function in rle module, modified . ImageMagick-CVE-2014-9846.patch . ImageMagick-CVE-2016-10050.patch ------------------------------------------------------------------- Mon Apr 24 13:47:24 UTC 2017 - pgajdos@suse.com - security update: * CVE-2017-7943 [bsc#1034870] + ImageMagick-CVE-2017-7943.patch * CVE-2017-7942 [bsc#1034872] + ImageMagick-CVE-2017-7942.patch * CVE-2017-7941 [bsc#1034876] + ImageMagick-CVE-2017-7941.patch ------------------------------------------------------------------- Tue Mar 21 12:48:25 UTC 2017 - pgajdos@suse.com - amend ImageMagick-CVE-2016-7518.patch to fix sun coder [bsc#1028079c#5] ------------------------------------------------------------------- Thu Mar 2 09:37:47 UTC 2017 - pgajdos@suse.com - fix segmentation fault when wrong parameter supplied to conjure command [bsc#1027480] + ImageMagick-conjure-wrong-param-segfault.patch ------------------------------------------------------------------- Tue Jan 17 10:27:54 UTC 2017 - pgajdos@suse.com - security update: * CVE-2016-10049 [bsc#1017311] + ImageMagick-CVE-2016-10049.patch * CVE-2016-10050 [bsc#1017312] + ImageMagick-CVE-2016-10050.patch * CVE-2016-10051 [bsc#1017313] + ImageMagick-CVE-2016-10051.patch * CVE-2016-10052 [bsc#1017314] + ImageMagick-CVE-2016-10052.patch * CVE-2016-10144 [bsc#1020433] + ImageMagick-CVE-2016-10144.patch * CVE-2016-10145 [bsc#1020435] + ImageMagick-CVE-2016-10145.patch * CVE-2017-5506 [bsc#1020436] + ImageMagick-CVE-2017-5506.patch * CVE-2016-10059 [bsc#1017318] + ImageMagick-CVE-2016-10059.patch * CVE-2016-10046 [bsc#1017308] + ImageMagick-CVE-2016-10046.patch * CVE-2016-10048 [bsc#1017310] + ImageMagick-CVE-2016-10048.patch * CVE-2017-5508 [bsc#1020441] + ImageMagick-CVE-2017-5508.patch * CVE-2016-10146 [bsc#1020443] + ImageMagick-CVE-2016-10146.patch * CVE-2016-10063 [bsc#1017320] + ImageMagick-CVE-2016-10063.patch * CVE-2016-10065 [bsc#1017322] + ImageMagick-CVE-2016-10065.patch * CVE-2017-5511 [bsc#1020448] + ImageMagick-CVE-2017-5511.patch * CVE-2016-10060 [bsc#1017319] + ImageMagick-CVE-2016-10060.patch * CVE-2016-10064 [bsc#1017321] + ImageMagick-CVE-2016-10064.patch * CVE-2016-10068 [bsc#1017324] + ImageMagick-CVE-2016-10068.patch * CVE-2016-10070 [bsc#1017326] + ImageMagick-CVE-2016-10070.patch * CVE-2016-10071 [bsc#1017326] + ImageMagick-CVE-2016-10071.patch * CVE-2017-5507 [bsc#1020439] + ImageMagick-CVE-2017-5507.patch ------------------------------------------------------------------- Tue Jan 3 12:51:51 UTC 2017 - pgajdos@suse.com - revert bogus ImageMagick-CVE-2016-9773.patch, ImageMagick-6 is not affected by CVE-2016-9773: http://www.imagemagick.org/discourse-server/viewtopic.php?t=31045 [bsc#1017421] ------------------------------------------------------------------- Mon Dec 12 15:03:56 UTC 2016 - pgajdos@suse.com - security update: * CVE-2016-8866 [bsc#1009318] + ImageMagick-CVE-2016-8866.patch * CVE-2016-9773 [bsc#1013376] + ImageMagick-CVE-2016-9773.patch * CVE-2016-8707 [bsc#1014159] + ImageMagick-CVE-2016-8707.patch ------------------------------------------------------------------- Sun Dec 4 14:20:43 UTC 2016 - pgajdos@suse.com - turn on make check - ImageMagick-buffer-overflow-pdb,map,tiff.patch renamed to ImageMagick-buffer-overflow-pdb,map.patch and hunk changing tiff coder was removed: tiff does not seem to be affected by 1002209 -- the code is not there, this hunk breaks tests and original commit message does not talk about tiff at all - ImageMagick-CVE-2016-7530.patch: remove the hunk that changes the test, it breaks it now ------------------------------------------------------------------- Mon Nov 28 12:08:38 UTC 2016 - pgajdos@suse.com - security update: * CVE-2016-9556 [bsc#1011130] + ImageMagick-CVE-2016-9556.patch * CVE-2016-9559 [bsc#1011136] + ImageMagick-CVE-2016-9559.patch ------------------------------------------------------------------- Mon Nov 14 14:38:29 UTC 2016 - pgajdos@suse.com - improving fix for CVE-2015-8957 and CVE-2015-8958 [bsc#1000691c33] + ImageMagick-data-length.patch - renaming the patch for CVE-2015-8957 to declared name ------------------------------------------------------------------- Wed Nov 9 20:07:51 UTC 2016 - pgajdos@suse.com - security update: * CVE-2016-8862 [bsc#1007245] + ImageMagick-CVE-2016-8862.patch ------------------------------------------------------------------- Tue Oct 18 12:37:13 UTC 2016 - pgajdos@suse.com - security update: * CVE-2016-8684 [bsc#1005123] + ImageMagick-CVE-2016-8684.patch * CVE-2016-8682 [bsc#1005125] + ImageMagick-CVE-2016-8682.patch * CVE-2016-8683 [bsc#1005127] + ImageMagick-CVE-2016-8683.patch ------------------------------------------------------------------- Mon Sep 26 14:52:10 UTC 2016 - pgajdos@suse.com - security update: * CVE-2016-7529 [bsc#1000399] + ImageMagick-CVE-2016-7529.patch * CVE-2016-7530 [bsc#1000399], [bsc#1000703] + ImageMagick-CVE-2016-7530.patch * CVE-2016-7528 [bsc#1000434] + ImageMagick-CVE-2016-7528.patch * CVE-2016-7526, CVE-2016-7527 [bsc#1000436] + ImageMagick-CVE-2016-7526.patch + ImageMagick-CVE-2016-7527.patch * CVE-2016-7515 [bsc#1000689] + ImageMagick-CVE-2016-7515.patch * CVE-2015-8957 [bsc#1000690] + ImageMagick-CVE-2015-8957.patch * CVE-2015-8958 [bsc#1000691] + ImageMagick-CVE-2015-8958.patch * CVE-2016-7516 [bsc#1000692] + ImageMagick-CVE-2016-7516.patch * CVE-2016-7517 [bsc#1000693] + ImageMagick-CVE-2016-7517.patch * CVE-2016-7518 [bsc#1000694] + ImageMagick-CVE-2016-7518.patch * CVE-2016-7519 [bsc#1000695] + ImageMagick-CVE-2016-7519.patch * CVE-2016-7522 [bsc#1000698] + ImageMagick-CVE-2016-7522.patch * CVE-2016-7523 [bsc#1000699] + ImageMagick-CVE-2016-7523.patch * CVE-2016-7524 [bsc#1000700], CVE-2016-7800 [bsc#1002422] + ImageMagick-CVE-2016-7524,7800.patch * CVE-2016-7531 [bsc#1000704] + ImageMagick-CVE-2016-7531.patch * CVE-2016-7533 [bsc#1000707] + ImageMagick-CVE-2016-7533.patch * CVE-2016-7535 [bsc#1000709] + ImageMagick-CVE-2016-7535.patch * CVE-2016-7537 [bsc#1000711] + ImageMagick-CVE-2016-7537.patch * CVE-2015-8959 [bsc#1000713], CVD-2014-9907 [bsc#1000714] - ImageMagick-CVE-2016-5687.patch + ImageMagick-CVE-2016-5687,CVE-2015-8959,CVE-2014-9907.patch * CVE-2016-6823 [bsc#1001066] + ImageMagick-CVE-2016-6823.patch * CVE-2016-7101 [bsc#1001221] + ImageMagick-CVE-2016-7101.patch * fix buffer overflows [bsc#1002209] + ImageMagick-buffer-overflow-pdb,map,tiff.patch * CVE-2016-7799 [bsc#1002421] + ImageMagick-CVE-2016-7799.patch * CVE-2016-7996, CVE-2016-7997 [bsc#1003629] + ImageMagick-CVE-2016-7996,7997.patch * CVE-2016-7514 [bsc#1000688] + ImageMagick-CVE-2016-7514.patch * fix segfault in psd reader [bsc#1000701] + ImageMagick-psd-segfault.patch ------------------------------------------------------------------- Thu Aug 4 13:03:03 UTC 2016 - pgajdos@suse.com - security update: * CVE-2016-6520 [bsc#991872] + ImageMagick-CVE-2016-6520.patch * CVE-2016-6491 [bsc#991445] + ImageMagick-CVE-2016-6491.patch ------------------------------------------------------------------- Wed Jun 29 11:50:29 UTC 2016 - pgajdos@suse.com - security update: * CVE-2016-5841 [bsc#986609] + ImageMagick-CVE-2016-5841.patch * CVE-2016-5842 [bsc#986608] + ImageMagick-CVE-2016-5842.patc ------------------------------------------------------------------- Tue Jun 7 11:49:34 UTC 2016 - pgajdos@suse.com - security update: * CVE-2015-8902 [bsc#983253] + ImageMagick-CVE-2015-8902.patch * CVE-2015-8901 [bsc#983234] + ImageMagick-CVE-2015-8901.patch * CVE-2015-8903 [bsc#983259] + ImageMagick-CVE-2015-8903.patch * CVE-2016-4562, CVE-2016-4563, CVE-2016-4564 [bsc#983292] [bsc#983305] [bsc#983308] + ImageMagick-CVE-2016-4562,4563,4564.patch * CVE-2014-9846 [bsc#983521] + ImageMagick-CVE-2014-9846.patch * CVE-2015-8894 [bsc#983523] + ImageMagickMagick-CVE-2015-8894.patch * CVE-2015-8896 [bsc#983533] + ImageMagick-CVE-2015-8896.patch * CVE-2015-8897 [bsc#983739] + ImageMagick-CVE-2015-8897.patch * CVE-2015-8898 [bsc#983746] + ImageMagick-CVE-2015-8898.patch * CVE-2014-9805 [bsc#983752] + ImageMagick-CVE-2014-9805.patch * CVE-2014-9806 [bsc#983774] + ImageMagick-CVE-2014-9806.patch * CVE-2014-9807 [bsc#983794] + ImageMagick-CVE-2014-9807.patch * CVE-2014-9808 [bsc#983796] + ImageMagick-CVE-2014-9808.patch * CVE-2014-9809 [bsc#983799] + ImageMagick-CVE-2014-9809.patch * CVE-2014-9810 [bsc#983803] + ImageMagick-CVE-2014-9810.patch * CVE-2014-9849 [bsc#984018] + ImageMagick-CVE-2014-9849.patch * CVE-2014-9836 [bsc#984023] + ImageMagick-CVE-2014-9836.patch * CVE-2014-9828 [bsc#984028] + ImageMagick-CVE-2014-9828.patch * CVE-2014-9813 [bsc#984035] + ImageMagick-CVE-2014-9813.patch * CVE-2014-9830 [bsc#984135] + ImageMagick-CVE-2014-9830.patch * CVE-2014-9811 [bsc#984032] + ImageMagick-CVE-2014-9811.patch * CVE-2014-9812 [bsc#984137] + ImageMagick-CVE-2014-9812.patch * CVE-2014-9819 [bsc#984142] + ImageMagick-CVE-2014-9819.patch * CVE-2014-9847 [bsc#984144] + ImageMagick-CVE-2014-9847.patch * CVE-2014-9835, CVE-2014-9831 [bsc#984145] [bsc#984375] + ImageMagick-CVE-2014-9835,9831.patch * CVE-2014-9820 [bsc#984150] + ImageMagick-CVE-2014-9820.patch * CVE-2014-9851 [bsc#984160] + ImageMagick-CVE-2014-9851.patch * CVE-2014-9837 [bsc#984166] + ImageMagick-CVE-2014-9837.patch * CVE-2014-9842 [bsc#984374] + ImageMagick-CVE-2014-9842.patch * CVE-2014-9818, CVE-2014-9826,CVE-2014-9829 [bsc#984181] [bsc#984186] [bsc#984409] + ImageMagick-CVE-2014-9818,9826,9829.patch * CVE-2014-9854 [bsc#984184] + ImageMagick-CVE-2014-9854.patch * CVE-2014-9824 [bsc#984185] + ImageMagick-CVE-2014-9824.patch * CVE-2014-9822 [bsc#984187] + ImageMagick-CVE-2014-9822.patch * CVE-2014-9814 [bsc#984193] + ImageMagick-CVE-2014-9814.patch * CVE-2014-9838 [bsc#984370] + ImageMagick-CVE-2014-9838.patch * CVE-2014-9815 [bsc#984372] + ImageMagick-CVE-2014-9815.patch * CVE-2014-9844 [bsc#984373] + ImageMagick-CVE-2014-9844.patch * CVE-2014-9839 [bsc#984379] + ImageMagick-CVE-2014-9839.patch * CVE-2014-9845 [bsc#984394] + ImageMagick-CVE-2014-9845.patch * CVE-2014-9816 [bsc#984398] + ImageMagick-CVE-2014-9816.patch * CVE-2014-9817 [bsc#984400] + ImageMagick-CVE-2014-9817.patch * CVE-2014-9823 [bsc#984401] + ImageMagick-CVE-2014-9823.patch * CVE-2014-9853 [bsc#984408] + ImageMagick-CVE-2014-9853.patch * CVE-2014-9840 [bsc#984433] + ImageMagick-CVE-2014-9840.patch * CVE-2014-9834 [bsc#984436] + ImageMagick-CVE-2014-9834.patch * CVE-2016-5688 [bsc#985442] + ImageMagick-CVE-2016-5688.patch * CVE-2016-5687 [bsc#985448] + ImageMagick-CVE-2016-5687.patch * CVE-2016-5691 [bsc#985456] + ImageMagick-CVE-2016-5691.patch * CVE-2016-5690 [bsc#985451] + ImageMagick-CVE-2016-5690.patch * CVE-2016-5689 [bsc#985460] + ImageMagick-CVE-2016-5689.patch ------------------------------------------------------------------- Tue May 31 08:27:21 UTC 2016 - pgajdos@suse.com - security update: * CVE-2016-5118 [bsc#982178] + ImageMagick-CVE-2016-5118.patch ------------------------------------------------------------------- Thu May 12 09:47:55 UTC 2016 - pgajdos@suse.com - disabled https delegate in delegates.xml [bsc#978061c#72] ------------------------------------------------------------------- Thu May 5 13:14:06 UTC 2016 - pgajdos@suse.com - security update: workaround imagetragick by disabling mvg, msl, txt and url delegates, fix win and show in delegates.xml and remove gplt from delegates.xml [bsc#978061] ------------------------------------------------------------------- Thu Nov 13 15:19:26 UTC 2014 - pgajdos@suse.com - security update CVE-2014-8716 [bnc#905260] * ImageMagick-CVE-2014-8716.patch ------------------------------------------------------------------- Tue Nov 4 10:55:16 UTC 2014 - pgajdos@suse.com - security update: CVE-2014-8354, CVE-2014-8355, CVE-2014-8562 * ImageMagick-CVE-2014-8354.patch [bnc#903204] * ImageMagick-CVE-2014-8355.patch [bnc#903216] * ImageMagick-CVE-2014-8562.patch [bnc#903638] ------------------------------------------------------------------- Tue Feb 18 15:31:53 UTC 2014 - pgajdos@suse.com - security update, fixes [bnc#863838] - added patches: * ImageMagick-6.4.3.6-CVE-2014-1947.patch - modified patches: * ImageMagick-6.4.3.6-doc.patch (refreshed) ------------------------------------------------------------------- Mon Mar 18 12:43:31 UTC 2013 - pgajdos@suse.com - security update: * CVE-2012-3437.patch [bnc#773612] ------------------------------------------------------------------- Mon Mar 18 11:52:17 UTC 2013 - pgajdos@suse.com - fixed convert slowness for particular images [bnc#754481] ------------------------------------------------------------------- Wed Apr 25 12:57:04 UTC 2012 - pgajdos@suse.com - fixed (security-dos+exif.patch): * CVE-2012-0247 [bnc#746880] * CVE-2012-0248 [bnc#746880] * CVE-2012-1185 [bnc#752879] * CVE-2012-1186 [bnc#752879] * CVE-2012-0259 [bnc#754749] * CVE-2012-0260 [bnc#754749] * CVE-2012-1798 [bnc#754749] * CVE-2012-1610 [bnc#758512] ------------------------------------------------------------------- Mon Apr 18 10:45:11 CEST 2011 - pgajdos@suse.cz - fixed use of invalid pointer while converting jpeg files [bnc#559109] * invalid-pointer.patch - fixed wrong return code of identify -version command [bnc#522077] * wrong-return-code.patch ------------------------------------------------------------------- Mon Jun 29 16:26:22 CEST 2009 - nadvornik@suse.cz - fixed the race condition patch [bnc#465967, bnc#517177] ------------------------------------------------------------------- Thu Jun 4 13:17:12 CEST 2009 - nadvornik@suse.cz - fixed integer overflow in XMakeImage [SA35216, bnc#507728] ------------------------------------------------------------------- Fri Jan 23 16:49:09 CET 2009 - nadvornik@suse.cz - backported fix for race condition [bnc#465967] ------------------------------------------------------------------- Fri Dec 5 11:21:47 CET 2008 - nadvornik@suse.cz - fixed fontconfig detection [bnc#441874] ------------------------------------------------------------------- Mon Dec 1 12:43:56 CET 2008 - ro@suse.de - add libMagicWand1 to baselibs.conf (for libxine1) ------------------------------------------------------------------- Tue Oct 7 15:09:28 CEST 2008 - thoenig@suse.de - add baselibs.conf (libMagickCore1) required by libfprint0-32bit ------------------------------------------------------------------- Wed Sep 10 15:22:36 CEST 2008 - nadvornik@suse.cz - update to 6.4.3-6, see ChangeLog for details ------------------------------------------------------------------- Wed Apr 9 13:40:11 CEST 2008 - nadvornik@suse.cz - update to 6.4.0-4, see ChangeLog for details * mostly bugfixes ------------------------------------------------------------------- Mon Apr 7 17:11:59 CEST 2008 - schwab@suse.de - Fix PRNG. ------------------------------------------------------------------- Sat Mar 29 07:40:43 CET 2008 - coolo@suse.de - fix requires ------------------------------------------------------------------- Wed Mar 26 13:57:14 CET 2008 - nadvornik@suse.cz - updated to 6.3.9-7, see ChangeLog for details * renamed shared library subpackages: libMagick10 -> libMagickCore1 libWand10 -> libMagickWand1 libMagick++10 -> libMagick++1 * read EXIF data in TIFF images * add -encipher / -decipher options to the command-line utilities * many bugfixes and improvements ------------------------------------------------------------------- Mon Dec 3 17:39:00 CET 2007 - nadvornik@suse.cz - fixed BuildRequires ------------------------------------------------------------------- Fri Nov 30 16:50:35 CET 2007 - nadvornik@suse.cz - updated to 6.3.7-2, see ChangeLog for details * fixes conflicts in header files [#340485] ------------------------------------------------------------------- Mon Oct 8 14:20:12 CEST 2007 - pth@suse.de - Add libMagick10 to Requires of perl-PerlMagick (#331611) ------------------------------------------------------------------- Tue Sep 25 11:54:58 CEST 2007 - nadvornik@suse.cz - updated to 6.3.5-10: fixes CVE-2007-4985, CVE-2007-4986, CVE-2007-4987, CVE-2007-4988 [#327021] ------------------------------------------------------------------- Fri Aug 3 14:13:24 CEST 2007 - coolo@suse.de - fix provides for ImageMagick-Magick++ (#293401) ------------------------------------------------------------------- Sat Jul 28 21:18:41 CEST 2007 - coolo@suse.de - remove requires on ImageMagick-Magick++ ------------------------------------------------------------------- Wed Jul 25 17:31:33 CEST 2007 - nadvornik@suse.cz - updated to 6.3.5-3, see ChangeLog for details - reduced the requrements of the main package, created ImageMagick-extra with full set of requirements - adjusted to Shared Library Policy: * created libMagick10 and libWand10 * renamed ImageMagick-Magick++ -> libMagick++10 * renamed ImageMagick-Magick++-devel -> libMagick++-devel ------------------------------------------------------------------- Thu Apr 19 13:53:08 CEST 2007 - nadvornik@suse.cz - updated to 6.3.3-8, see ChangeLog for details - fixed various crashes on malformed input, including CVE-2007-1797 and CVE-2007-1667 [#258253] - do not build static libs - adjusted BuildRequires for libjasper-devel ------------------------------------------------------------------- Tue Feb 27 22:53:46 CET 2007 - dmueller@suse.de - adjust BuildRequires: libexif -> libexif-devel ------------------------------------------------------------------- Mon Feb 19 17:06:22 CET 2007 - mvaner@suse.cz - Array boundaries fix in bezier path (#243280) - bezier-array.patch ------------------------------------------------------------------- Mon Oct 30 17:29:59 CET 2006 - nadvornik@suse.cz - fixed overflows in dcm and palm codecs CVE-2006-5456 [#215685] ------------------------------------------------------------------- Wed Oct 18 15:52:37 CEST 2006 - postadal@suse.cz - disabled -fstack-protector for %suse_version <= 1000 ------------------------------------------------------------------- Tue Oct 17 17:43:59 CEST 2006 - nadvornik@suse.cz - updated to 1.3.0-0 * enhanced -fx * many bugfixes, see ChangeLog ------------------------------------------------------------------- Thu Jul 13 10:42:24 CEST 2006 - nadvornik@suse.cz - updated to 1.2.8-1 * security fixes merged upstream * fixed compilation with new libpng * many other fixes ------------------------------------------------------------------- Wed Mar 15 11:02:41 CET 2006 - nadvornik@suse.cz - fixed rpath in perl module ------------------------------------------------------------------- Fri Feb 3 17:13:20 CET 2006 - nadvornik@suse.cz - better fix for format string vulnerability CVE-2006-0082 [#141390] - fixed shell metacharacters in file names passed into delegates CVE-2005-4601 [#141999] - added version numbers to devel subpackage requirements ------------------------------------------------------------------- Wed Jan 25 21:32:48 CET 2006 - mls@suse.de - converted neededforbuild to BuildRequires ------------------------------------------------------------------- Mon Jan 16 18:08:04 CET 2006 - meissner@suse.de - Use -fstack-protector. ------------------------------------------------------------------- Tue Dec 20 18:39:12 CET 2005 - nadvornik@suse.cz - updated to 6.2.5 ------------------------------------------------------------------- Wed Sep 21 18:08:42 CEST 2005 - nadvornik@suse.cz - updated to 6.2.4 ------------------------------------------------------------------- Sun Sep 18 00:47:48 CEST 2005 - postadal@suse.cz - parallelize build ------------------------------------------------------------------- Wed Sep 7 15:47:40 CEST 2005 - nadvornik@suse.cz - fixed URL in man pages [#115568] ------------------------------------------------------------------- Thu Jul 21 10:47:30 CEST 2005 - nadvornik@suse.cz - moved .la files back to main package, they are needed for runtime ------------------------------------------------------------------- Fri Jul 15 14:57:43 CEST 2005 - nadvornik@suse.cz - updated to 6.2.3 - fixed incorrect char type usage [#95086] ------------------------------------------------------------------- Tue May 3 14:01:49 CEST 2005 - nadvornik@suse.cz - updated to 6.2.2, fixes crash in PNM reader [#80428] ------------------------------------------------------------------- Wed Mar 9 12:04:14 CET 2005 - nadvornik@suse.cz - fixed format string vulnerability [#67273] ------------------------------------------------------------------- Wed Mar 02 14:43:29 CET 2005 - nadvornik@suse.cz - linked PerlMagick correcly - added xorg-x11-devel to requires of devel subpackage ------------------------------------------------------------------- Sat Jan 22 11:17:44 CET 2005 - ro@suse.de - fix libltdl removal on lib64 ------------------------------------------------------------------- Tue Jan 18 14:38:36 CET 2005 - nadvornik@suse.cz - updated to 6.1.8 * fixed .psd file read overflow (CAN-2005-0005) [#49839] ------------------------------------------------------------------- Mon Nov 01 15:44:49 CET 2004 - nadvornik@suse.cz - fixed integer overflow in EXIF handling [#47745] ------------------------------------------------------------------- Tue Sep 14 18:46:03 CEST 2004 - nadvornik@suse.cz - branched new subpackage ImageMagick-Magick++-devel [#45245] ------------------------------------------------------------------- Tue Sep 14 14:48:53 CEST 2004 - nadvornik@suse.cz - removed Requires: ImageMagick-devel from ImageMagick-Magick++ [#45245] ------------------------------------------------------------------- Tue Sep 07 17:01:00 CEST 2004 - nadvornik@suse.cz - updated to 6.0.7 * fixed possible miscompilation of included headers * fixed PerlMagick's Profile crash [#44710] * other bugfixes ------------------------------------------------------------------- Tue Aug 31 15:51:19 CEST 2004 - nadvornik@suse.cz - updated to 6.0.6-2: * fixed decoding runlength-encoded BMP [#44081] * enabled LZW compression ------------------------------------------------------------------- Mon Aug 9 18:56:19 CEST 2004 - ro@suse.de - fix build with current automake ------------------------------------------------------------------- Mon Jun 28 16:20:33 CEST 2004 - nadvornik@suse.cz - updated to 6.0.2 ------------------------------------------------------------------- Fri Mar 26 17:59:34 CET 2004 - nadvornik@suse.cz - adjusted default fonts ------------------------------------------------------------------- Fri Feb 06 15:44:35 CET 2004 - nadvornik@suse.cz - update to 5.5.7-16 - added run_ldconfig macro - build as user ------------------------------------------------------------------- Tue Sep 09 15:34:52 CEST 2003 - nadvornik@suse.cz - fixed annotate function [29748] ------------------------------------------------------------------- Mon Sep 08 17:34:35 CEST 2003 - nadvornik@suse.cz - fixed reading of tiff images [#25552] ------------------------------------------------------------------- Thu Aug 28 18:15:55 CEST 2003 - nadvornik@suse.cz - fixed output from Magick++-config --version - compiled with -fno-strict-aliasing ------------------------------------------------------------------- Wed Aug 20 17:04:55 CEST 2003 - mjancar@suse.cz - require the perl version we build with ------------------------------------------------------------------- Tue Jul 29 12:15:32 CEST 2003 - nadvornik@suse.cz - lib64 fixed - filelist fixed ------------------------------------------------------------------- Fri Jul 25 11:23:44 CEST 2003 - nadvornik@suse.cz - updated to 5.5.7-10 - used perl_process_packlist ------------------------------------------------------------------- Mon Feb 10 18:44:41 CET 2003 - nadvornik@suse.cz - updated to 5.5.4-4: - fixed bug [#23111] - copied ltdl sources from libtool package ------------------------------------------------------------------- Thu Dec 19 13:59:00 CET 2002 - adrian@suse.de - add liblcms-devel to #neededforbuild ------------------------------------------------------------------- Thu Nov 21 19:14:43 CET 2002 - nadvornik@suse.cz - updated to 5.5.1 ------------------------------------------------------------------- Wed Nov 20 01:48:48 CET 2002 - ro@suse.de - fix build with latest automake ------------------------------------------------------------------- Fri Nov 01 11:48:35 CET 2002 - nadvornik@suse.cz - fixed detection of lpr [#21187] - fixed to compile with new libjasper ------------------------------------------------------------------- Tue Sep 03 10:59:13 CEST 2002 - nadvornik@suse.cz - do not try to detect supported ghostscript devices [#18424] ------------------------------------------------------------------- Thu Aug 29 19:12:23 CEST 2002 - nadvornik@suse.cz - fixed typo in delegates.mgk ------------------------------------------------------------------- Sat Aug 10 17:30:02 CEST 2002 - kukuk@suse.de - Fix filelist for threaded perl ------------------------------------------------------------------- Fri Jul 26 21:45:42 CEST 2002 - adrian@suse.de - fix neededforbuild ------------------------------------------------------------------- Fri Jul 26 10:59:04 CEST 2002 - nadvornik@suse.cz - update to 5.4.7-4 ------------------------------------------------------------------- Tue Jul 2 13:41:13 CEST 2002 - nadvornik@suse.cz - update to 5.4.7 ------------------------------------------------------------------- Fri May 3 12:13:01 CEST 2002 - meissner@suse.de - %_lib fixes ------------------------------------------------------------------- Wed Mar 6 11:09:45 CET 2002 - nadvornik@suse.cz - added symlink index.html->ImageMagick.html in doc directory ------------------------------------------------------------------- Mon Feb 4 10:45:44 CET 2002 - nadvornik@suse.cz - update to 5.4.2-3, xtp updated to 5.4.3 ------------------------------------------------------------------- Fri Feb 1 00:26:08 CET 2002 - ro@suse.de - changed neededforbuild to ------------------------------------------------------------------- Thu Jan 17 10:34:38 CET 2002 - nadvornik@suse.cz - html files installed correctly ------------------------------------------------------------------- Tue Jan 15 14:31:52 CET 2002 - nadvornik@suse.cz - update to 5.4.2: - new scripting language utility, conjure ------------------------------------------------------------------- Mon Dec 3 14:28:28 CET 2001 - nadvornik@suse.cz - update to 5.4.1: - better SVG support - changed default background color to none - eliminated the libMagick.so dependancy on libtiff, libpng, libjpeg - coders/wmf.c updated for libwmf 0.2 ------------------------------------------------------------------- Thu Oct 18 09:33:39 CEST 2001 - nadvornik@suse.cz - update to 5.4.0: - Text drawing now handles UTF8-encoding - Added a MATLAB encoder - Uses SHA instead of MD5 for image signatures ------------------------------------------------------------------- Fri Aug 24 15:56:13 CEST 2001 - nadvornik@suse.cz - update to 5.3.8: - Added a new method SetImageClipMask(). - Added @ to the image geometry specification. Use it to specify the square-root of the maximum area in pixels of an image - many bugfixes ------------------------------------------------------------------- Tue Aug 21 12:19:07 CEST 2001 - nadvornik@suse.cz - removed wv-devel from neededforbuild, it is no longer needed - fixed segfault in svg converting - fixed doc installation ------------------------------------------------------------------- Wed Aug 15 10:14:51 CEST 2001 - nadvornik@suse.cz - compiled with libjasper ------------------------------------------------------------------- Tue Jul 24 13:43:46 CEST 2001 - nadvornik@suse.cz - update to 5.3.7 ------------------------------------------------------------------- Fri Jul 20 12:06:42 CEST 2001 - kukuk@suse.de - changed neededforbuild to - changed neededforbuild to - changed neededforbuild to - changed neededforbuild to ------------------------------------------------------------------- Wed Jun 27 14:09:22 CEST 2001 - nadvornik@suse.cz - update to 5.3.6 - dropped ImageMagick-pictures subpackage ------------------------------------------------------------------- Tue Jun 12 10:52:58 CEST 2001 - nadvornik@suse.cz - update to 5.3.5 - fixed to compile with new autoconf ------------------------------------------------------------------- Tue Apr 17 16:27:01 CEST 2001 - kukuk@suse.de - Remove magickcpp_version macro ------------------------------------------------------------------- Thu Apr 5 08:47:01 CEST 2001 - nadvornik@suse.cz - updated to 5.3.1 ------------------------------------------------------------------- Tue Mar 27 14:29:57 CEST 2001 - ro@suse.de - libtoolize main dir as well ------------------------------------------------------------------- Tue Mar 27 00:49:07 CEST 2001 - ro@suse.de - libtoolize ------------------------------------------------------------------- Fri Mar 9 10:26:04 CET 2001 - nadvornik@suse.cz - updated to 5.3.0 - fixed neededforbuild ------------------------------------------------------------------- Mon Feb 19 13:53:09 CET 2001 - nadvornik@suse.cz - fixed filelist ------------------------------------------------------------------- Tue Feb 13 10:35:43 CET 2001 - nadvornik@suse.cz - update to 5.2.9 ------------------------------------------------------------------- Tue Dec 12 11:31:17 CET 2000 - nadvornik@suse.cz - compiled with option --with-threads ------------------------------------------------------------------- Tue Dec 5 12:38:47 CET 2000 - nadvornik@suse.cz - update to 5.2.6 - now uses freetype2 ------------------------------------------------------------------- Thu Nov 16 16:23:27 CET 2000 - nadvornik@suse.cz - update to 5.2.5 ------------------------------------------------------------------- Tue Nov 14 10:10:35 CET 2000 - nadvornik@suse.cz - fixed writing transparent xpm files ------------------------------------------------------------------- Wed Nov 8 11:05:39 CET 2000 - nadvornik@suse.cz - changed to long names - imagemag -> ImageMagick - magickd -> ImageMagick-devel - magickpp -> ImageMagick-Magick++ - plmagick -> perl-PerlMagick - impict -> ImageMagick-pictures ------------------------------------------------------------------- Wed Oct 18 14:30:55 CEST 2000 - nadvornik@suse.cz - update to 5.2.4 - compiled with --with-modules ------------------------------------------------------------------- Mon Sep 18 10:15:50 CEST 2000 - nadvornik@suse.cz - fixed usage of suse_update_config ------------------------------------------------------------------- Thu Sep 14 18:21:45 CEST 2000 - nadvornik@suse.cz - drop subpackage imfilm, removed povray from neededforbuild - povray scripts are now in /usr/share/doc/imagemag/scenes ------------------------------------------------------------------- Thu Sep 14 14:35:20 CEST 2000 - nadvornik@suse.cz - update to 5.2.3 - new subpackage magickd for includes and static libs - changed prefix to /usr - removed --without-largefiles ------------------------------------------------------------------- Wed Aug 23 00:05:39 CEST 2000 - ro@suse.de - fixed perl path ------------------------------------------------------------------- Thu Jun 8 08:29:04 CEST 2000 - nadvornik@suse.cz - update to latest source from ftp - added source url ------------------------------------------------------------------- Tue Jun 6 09:28:47 CEST 2000 - nadvornik@suse.cz - images, scenes -> /usr/share/ImageMagick - doc -> %{_defaultdocdir}/imagemag ------------------------------------------------------------------- Mon Jun 5 11:49:23 CEST 2000 - nadvornik@suse.cz - used --without-largefiles ------------------------------------------------------------------- Thu Jun 1 09:33:32 CEST 2000 - nadvornik@suse.cz - xtp updated to 5.2.0 ------------------------------------------------------------------- Mon May 29 08:13:38 CEST 2000 - nadvornik@suse.cz - updated to 5.2.0 ------------------------------------------------------------------- Fri May 19 11:23:14 CEST 2000 - nadvornik@suse.cz - used %{_defaultdocdir} - changed group ------------------------------------------------------------------- Fri Apr 28 11:04:11 MEST 2000 - nadvornik@suse.cz - fixed to compile with xf86-4.0 ------------------------------------------------------------------- Mon Apr 10 16:18:44 CEST 2000 - nadvornik@suse.cz - added URL ------------------------------------------------------------------- Fri Apr 7 17:51:07 CEST 2000 - bk@suse.de - added suse config update macro ------------------------------------------------------------------- Thu Apr 6 15:39:12 CEST 2000 - nadvornik@suse.cz - update to 5.1.1 - added BuildRoot ------------------------------------------------------------------- Wed Jan 19 15:35:24 CET 2000 - ro@suse.de - fixed specfile ------------------------------------------------------------------- Mon Jan 3 01:50:26 CET 2000 - ro@suse.de - update to 5.1.0 ------------------------------------------------------------------- Mon Sep 27 16:31:01 CEST 1999 - bs@suse.de - fixed requirements for sub packages ------------------------------------------------------------------- Mon Sep 13 17:23:57 CEST 1999 - bs@suse.de - ran old prepare_spec on spec file to switch to new prepare_spec. ------------------------------------------------------------------- Thu Sep 2 01:34:11 CEST 1999 - ro@suse.de - update to 4.2.9 ------------------------------------------------------------------- Mon Jun 28 19:25:23 MEST 1999 - ro@suse.de - update to 4.2.7 ------------------------------------------------------------------- Wed May 19 13:25:48 MEST 1999 - ro@suse.de - fixed path in specfile ------------------------------------------------------------------- Wed May 19 10:05:36 MEST 1999 - ro@suse.de - fixed specfile ------------------------------------------------------------------- Wed May 19 01:06:01 MEST 1999 - ro@suse.de - update to 4.2.5 - new subpackage: magickpp (aka Magick++) a C++-API for libmagick ------------------------------------------------------------------- Fri Feb 19 12:29:08 MET 1999 - ro@suse.de - update to 4.2.0 ------------------------------------------------------------------- Mon Jan 18 17:41:46 MET 1999 - bs@suse.de - set libraries to 755 ------------------------------------------------------------------- Wed Jan 13 16:46:00 MET 1999 - ro@suse.de - update to 4.1.7 / PerlMagick 1.58 ------------------------------------------------------------------- Mon Dec 14 09:27:13 MET 1998 - ro@suse.de - update to 4.1.6 - disabled unix98/ptys in configure.in ------------------------------------------------------------------- Tue Dec 1 11:05:32 MET 1998 - ro@suse.de - update to 4.1.5 / PerlMagick 1.53 ------------------------------------------------------------------- Tue Nov 17 11:52:34 MET 1998 - ro@suse.de - update to 4.1.4 - switched to use configure instead of imake ------------------------------------------------------------------- Mon Aug 17 22:23:59 MEST 1998 - ro@suse.de - update to 4.0.9 ------------------------------------------------------------------- Fri Aug 14 16:02:00 MEST 1998 - ro@suse.de - fixed online documentation /usr/doc/packages/ImageMagick/ImageMagick.html is start page - added new subpackage PerlMagick "plmagick" ------------------------------------------------------------------- Thu Aug 13 17:47:24 MEST 1998 - ro@suse.de - update to 4.0.8 fixed default for printCommand in Display with a app-defaults file ------------------------------------------------------------------- Mon Jun 29 09:09:33 MEST 1998 - ro@suse.de - update to version 4.0.7 needs libpng-1.0.1 (and povray built with that version) ------------------------------------------------------------------- Tue Apr 7 17:39:35 MEST 1998 - ro@suse.de - update to version 4.0.4 added freetype support needs libpng-1.0.1 (and povray built with that version) ------------------------------------------------------------------- Sun Mar 1 12:19:28 MET 1998 - ro@suse.de - update to version 4.0.1 ------------------------------------------------------------------- Sun Nov 16 13:36:57 MET 1997 - ro@suse.de - fixed Symlink /usr/doc/packages/ImageMagick ------------------------------------------------------------------- Fri Nov 14 14:05:34 MET 1997 - ro@suse.de - new version 3.9.2 ------------------------------------------------------------------- Tue Nov 11 16:08:36 MET 1997 - ro@suse.de - imfilm and impict are built from same specfile ------------------------------------------------------------------- Mon Nov 3 17:49:58 MET 1997 - ro@suse.de - ready for autobuild