Debian Bug report logs -
#410435
imagemagick: Buffer overflow vulnerability in PALM coder. (CVE-2007-0770)
Reported by: Daniel Kobras <kobras@debian.org>
Date: Sat, 10 Feb 2007 17:18:24 UTC
Severity: grave
Tags: patch, security
Found in versions imagemagick/7:6.2.4.5.dfsg1-0.13, 7:6.2.4.5.dfsg1-0.11, 6:6.0.6.2-2.8
Fixed in versions imagemagick/7:6.2.4.5.dfsg1-0.14, imagemagick/7:6.2.4.5.dfsg1-1
Done: Daniel Kobras <kobras@debian.org>
Bug is archived. No further changes may be made.
Toggle useless messages
Report forwarded to debian-bugs-dist@lists.debian.org, Debian Security Team <team@security.debian.org>, Ryuichi Arafune <arafune@debian.org>:
Bug#410435; Package imagemagick.
(full text, mbox, link).
Acknowledgement sent to Daniel Kobras <kobras@debian.org>:
New Bug report received and forwarded. Copy sent to Debian Security Team <team@security.debian.org>, Ryuichi Arafune <arafune@debian.org>.
(full text, mbox, link).
Message #5 received at submit@bugs.debian.org (full text, mbox, reply):
[Message part 1 (text/plain, inline)]
Package: imagemagick
Version: 7:6.2.4.5.dfsg1-0.13
Severity: grave
Tags: security patch
Justification: user security hole
Hi!
The attached patches fix a regression introduced while trying to plug
CVE-2006-5456. It's due to a textbook example of a coding error that I
cannot blame on anybody else but me. A malicious image file in PALM
format can still circumvent a range check and cause a buffer overflow.
Other vendors refer to this vulnerability as CVE-2007-0770. The new patch
appears to originate from Vladimir Nadvornik, at least I dug it out of
his OpenSuSE packages. I'll fix my own mess in unstable unless Ryuichi
objects. As sarge is affected as well, I'd like to ask the security team
to release another DSA. The debdiffs for both sid and sarge are
attached.
Now the good news is that it's carnival time around here so nobody's to
take notice of this guy with the brown papaer bag on his head...
Thanks,
Daniel.
[imagemagick_6.2.4.5.dfsg1-0.14.debdiff (text/plain, inline)]
diff -u imagemagick-6.2.4.5.dfsg1/coders/palm.c imagemagick-6.2.4.5.dfsg1/coders/palm.c
--- imagemagick-6.2.4.5.dfsg1/coders/palm.c
+++ imagemagick-6.2.4.5.dfsg1/coders/palm.c
@@ -397,7 +397,8 @@
image->compression=RLECompression;
for (i=0; i < (long) bytes_per_row; )
{
- count=Min(ReadBlobByte(image), bytes_per_row-i);
+ count=ReadBlobByte(image);
+ count=Min(count, bytes_per_row-i);
byte=ReadBlobByte(image);
(void) ResetMagickMemory(one_row+i,(int) byte,count);
i+=count;
diff -u imagemagick-6.2.4.5.dfsg1/debian/changelog imagemagick-6.2.4.5.dfsg1/debian/changelog
--- imagemagick-6.2.4.5.dfsg1/debian/changelog
+++ imagemagick-6.2.4.5.dfsg1/debian/changelog
@@ -1,3 +1,12 @@
+imagemagick (7:6.2.4.5.dfsg1-0.14) unstable; urgency=high
+
+ * Non-maintainer upload.
+ * coders/palm.c: Fix regression introduced in patch for CVE-2006-5456.
+ Avoid bogus second read in macro call. Patch thanks to Vladimir
+ Nadvornik. (CVE-2007-0770)
+
+ -- Daniel Kobras <kobras@debian.org> Sat, 10 Feb 2007 15:56:18 +0100
+
imagemagick (7:6.2.4.5.dfsg1-0.13) unstable; urgency=high
* Non-maintainer upload.
[imagemagick_6.0.6.2-2.9.debdiff (text/plain, inline)]
diff -u imagemagick-6.0.6.2/coders/palm.c imagemagick-6.0.6.2/coders/palm.c
--- imagemagick-6.0.6.2/coders/palm.c
+++ imagemagick-6.0.6.2/coders/palm.c
@@ -362,7 +362,8 @@
image->compression=RLECompression;
for (i=0; i < (long) bytes_per_row; )
{
- count=Min(ReadBlobByte(image), bytes_per_row-i);
+ count=ReadBlobByte(image);
+ count=Min(count, bytes_per_row-i);
byte=ReadBlobByte(image);
(void) ResetMagickMemory(one_row+i,(int) byte,count);
i+=count;
diff -u imagemagick-6.0.6.2/debian/changelog imagemagick-6.0.6.2/debian/changelog
--- imagemagick-6.0.6.2/debian/changelog
+++ imagemagick-6.0.6.2/debian/changelog
@@ -1,3 +1,12 @@
+imagemagick (6:6.0.6.2-2.9) stable-security; urgency=high
+
+ * Non-maintainer upload for the Security Team.
+ * coders/palm.c: Fix regression introduced in patch for CVE-2006-5456.
+ Avoid bogus second read in macro call. Patch thanks to Vladimir
+ Nadvornik. (CVE-2007-0770)
+
+ -- Daniel Kobras <kobras@debian.org> Sat, 10 Feb 2007 15:59:32 +0100
+
imagemagick (6:6.0.6.2-2.8) stable-security; urgency=high
* Non-maintainer upload by the Security Team with great help from
Bug marked as found in version 7:6.2.4.5.dfsg1-0.11.
Request was from Daniel Kobras <kobras@debian.org>
to control@bugs.debian.org.
(full text, mbox, link).
Bug marked as found in version 6:6.0.6.2-2.8.
Request was from Daniel Kobras <kobras@debian.org>
to control@bugs.debian.org.
(full text, mbox, link).
Reply sent to Daniel Kobras <kobras@debian.org>:
You have taken responsibility.
(full text, mbox, link).
Notification sent to Daniel Kobras <kobras@debian.org>:
Bug acknowledged by developer.
(full text, mbox, link).
Message #14 received at 410435-close@bugs.debian.org (full text, mbox, reply):
Source: imagemagick
Source-Version: 7:6.2.4.5.dfsg1-0.14
We believe that the bug you reported is fixed in the latest version of
imagemagick, which is due to be installed in the Debian FTP archive:
imagemagick_6.2.4.5.dfsg1-0.14.diff.gz
to pool/main/i/imagemagick/imagemagick_6.2.4.5.dfsg1-0.14.diff.gz
imagemagick_6.2.4.5.dfsg1-0.14.dsc
to pool/main/i/imagemagick/imagemagick_6.2.4.5.dfsg1-0.14.dsc
imagemagick_6.2.4.5.dfsg1-0.14_i386.deb
to pool/main/i/imagemagick/imagemagick_6.2.4.5.dfsg1-0.14_i386.deb
libmagick++9-dev_6.2.4.5.dfsg1-0.14_i386.deb
to pool/main/i/imagemagick/libmagick++9-dev_6.2.4.5.dfsg1-0.14_i386.deb
libmagick++9c2a_6.2.4.5.dfsg1-0.14_i386.deb
to pool/main/i/imagemagick/libmagick++9c2a_6.2.4.5.dfsg1-0.14_i386.deb
libmagick9-dev_6.2.4.5.dfsg1-0.14_i386.deb
to pool/main/i/imagemagick/libmagick9-dev_6.2.4.5.dfsg1-0.14_i386.deb
libmagick9_6.2.4.5.dfsg1-0.14_i386.deb
to pool/main/i/imagemagick/libmagick9_6.2.4.5.dfsg1-0.14_i386.deb
perlmagick_6.2.4.5.dfsg1-0.14_i386.deb
to pool/main/i/imagemagick/perlmagick_6.2.4.5.dfsg1-0.14_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 410435@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Daniel Kobras <kobras@debian.org> (supplier of updated imagemagick package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Sat, 10 Feb 2007 19:25:25 +0100
Source: imagemagick
Binary: perlmagick libmagick9 libmagick9-dev imagemagick libmagick++9-dev libmagick++9c2a
Architecture: source i386
Version: 7:6.2.4.5.dfsg1-0.14
Distribution: unstable
Urgency: high
Maintainer: Daniel Kobras <kobras@debian.org>
Changed-By: Daniel Kobras <kobras@debian.org>
Description:
imagemagick - Image manipulation programs
libmagick++9-dev - The object-oriented C++ API to the ImageMagick library--developme
libmagick++9c2a - The object-oriented C++ API to the ImageMagick library
libmagick9 - Image manipulation library
libmagick9-dev - Image manipulation library -- development
perlmagick - A perl interface to the libMagick graphics routines
Closes: 410435
Changes:
imagemagick (7:6.2.4.5.dfsg1-0.14) unstable; urgency=high
.
* Non-maintainer upload.
* coders/palm.c: Fix regression introduced in patch for CVE-2006-5456.
Avoid bogus second read in macro call. Patch thanks to Vladimir
Nadvornik. (CVE-2007-0770) Closes: #410435
Files:
88d9c35c7b040f244bfd77a780fc9ca3 1014 graphics optional imagemagick_6.2.4.5.dfsg1-0.14.dsc
acc572c61cc9e7d8abe47f35790de1c7 88322 graphics optional imagemagick_6.2.4.5.dfsg1-0.14.diff.gz
9fbf386c53d8e55730aaa9d068a67ac5 738764 graphics optional imagemagick_6.2.4.5.dfsg1-0.14_i386.deb
e87539ad99c97650c78f67458becc5c7 1296246 libs optional libmagick9_6.2.4.5.dfsg1-0.14_i386.deb
45533deae1f98162d8ee4e32ca298e72 1638422 libdevel optional libmagick9-dev_6.2.4.5.dfsg1-0.14_i386.deb
3151a2f40a146330e6bb86e00304551a 178824 libs optional libmagick++9c2a_6.2.4.5.dfsg1-0.14_i386.deb
c0999d1d32e6008af514b688b98569ae 228038 libdevel optional libmagick++9-dev_6.2.4.5.dfsg1-0.14_i386.deb
15ce7077c454dbf6102839bc9dd4fdce 169326 perl optional perlmagick_6.2.4.5.dfsg1-0.14_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (Darwin)
iD8DBQFFzkFJpOKIA4m/fisRAiaSAKCUmOm8acHe7PQG9vfg4G+I8OzGYQCghsWi
uqKWTBjlfOLVJzcXxUtr9Es=
=zpZm
-----END PGP SIGNATURE-----
Information forwarded to debian-bugs-dist@lists.debian.org, Ryuichi Arafune <arafune@debian.org>:
Bug#410435; Package imagemagick.
(full text, mbox, link).
Acknowledgement sent to Moritz Muehlenhoff <jmm@inutil.org>:
Extra info received and forwarded to list. Copy sent to Ryuichi Arafune <arafune@debian.org>.
(full text, mbox, link).
Message #21 received at 410435@bugs.debian.org (full text, mbox, reply):
Daniel Kobras wrote:
> The attached patches fix a regression introduced while trying to plug
> CVE-2006-5456. It's due to a textbook example of a coding error that I
> cannot blame on anybody else but me. A malicious image file in PALM
> format can still circumvent a range check and cause a buffer overflow.
> Other vendors refer to this vulnerability as CVE-2007-0770. The new patch
> appears to originate from Vladimir Nadvornik, at least I dug it out of
> his OpenSuSE packages. I'll fix my own mess in unstable unless Ryuichi
> objects. As sarge is affected as well, I'd like to ask the security team
> to release another DSA. The debdiffs for both sid and sarge are
> attached.
Thanks, update is building.
Cheers,
Moritz
Reply sent to Daniel Kobras <kobras@debian.org>:
You have taken responsibility.
(full text, mbox, link).
Notification sent to Daniel Kobras <kobras@debian.org>:
Bug acknowledged by developer.
(full text, mbox, link).
Message #26 received at 410435-close@bugs.debian.org (full text, mbox, reply):
Source: imagemagick
Source-Version: 7:6.2.4.5.dfsg1-1
We believe that the bug you reported is fixed in the latest version of
imagemagick, which is due to be installed in the Debian FTP archive:
imagemagick_6.2.4.5.dfsg1-1.diff.gz
to pool/main/i/imagemagick/imagemagick_6.2.4.5.dfsg1-1.diff.gz
imagemagick_6.2.4.5.dfsg1-1.dsc
to pool/main/i/imagemagick/imagemagick_6.2.4.5.dfsg1-1.dsc
imagemagick_6.2.4.5.dfsg1-1_i386.deb
to pool/main/i/imagemagick/imagemagick_6.2.4.5.dfsg1-1_i386.deb
libmagick++9-dev_6.2.4.5.dfsg1-1_i386.deb
to pool/main/i/imagemagick/libmagick++9-dev_6.2.4.5.dfsg1-1_i386.deb
libmagick++9c2a_6.2.4.5.dfsg1-1_i386.deb
to pool/main/i/imagemagick/libmagick++9c2a_6.2.4.5.dfsg1-1_i386.deb
libmagick9-dev_6.2.4.5.dfsg1-1_i386.deb
to pool/main/i/imagemagick/libmagick9-dev_6.2.4.5.dfsg1-1_i386.deb
libmagick9_6.2.4.5.dfsg1-1_i386.deb
to pool/main/i/imagemagick/libmagick9_6.2.4.5.dfsg1-1_i386.deb
perlmagick_6.2.4.5.dfsg1-1_i386.deb
to pool/main/i/imagemagick/perlmagick_6.2.4.5.dfsg1-1_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 410435@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Daniel Kobras <kobras@debian.org> (supplier of updated imagemagick package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Sat, 28 Apr 2007 18:00:10 +0200
Source: imagemagick
Binary: perlmagick libmagick9 libmagick9-dev imagemagick libmagick++9-dev libmagick++9c2a
Architecture: source i386
Version: 7:6.2.4.5.dfsg1-1
Distribution: unstable
Urgency: high
Maintainer: Luciano Bello <luciano@linux.org.ar>
Changed-By: Daniel Kobras <kobras@debian.org>
Description:
imagemagick - Image manipulation programs
libmagick++9-dev - The object-oriented C++ API to the ImageMagick library--developme
libmagick++9c2a - The object-oriented C++ API to the ImageMagick library
libmagick9 - Image manipulation library
libmagick9-dev - Image manipulation library -- development
perlmagick - A perl interface to the libMagick graphics routines
Closes: 214623 317083 318176 325651 325720 330666 333616 335111 339548 340401 344997 345238 345595 345876 347486 349264 351498 352575 358148 360362 360400 364826 381831 383314 383314 385062 386964 393025 395830 398183 401047 404477 410435 412945 417237 418057 419274 420353
Changes:
imagemagick (7:6.2.4.5.dfsg1-1) unstable; urgency=high
.
* New maintainers.
* debian/compat: Splice debhelper version out of debian/rules into
separate file (but don't bump version).
* debian/control: Adjust jasper dependencies to current package names.
Closes: #419274, #420353
* Documentation minors improvements:
- Manpages says SEE ALSO, not SEE-ALSO. Closes: #333616
- Escaped specials chars in manpages. Closes: #381831
- External reference in convert(1). Closes: #398183
- "isplay", "perferred", "similiar" and "morify.html" typos fixed.
Closes: #386964, #351498, #395830
- ImageMagick(1) indentation. Closes: #335111
- "convert -help" duplicated line fixes. Closes: #339548
- Typo in description of --resize command fixed. Closes: #364826
* Magick++/lib/Image.cpp: Include cstdlib header to fix build failure
with gcc 4.3. Patch thanks to Martin Michlmayr. Closes: #417237
* coders/dcm.c: Fix integer overflow in DCM coder. (CVE-2007-1797)
Closes: #418057
* coders/icon.c: Fix segfault in ICON coder.
* coders/pcx.c: Fix heap overflow in PCX coder.
* coders/pict.c: Fix multiple segfaults in PICT coder.
* coders/png.c: Fix segfault in PNG coder.
* coders/pnm.c: Fix segfault in PNM coder.
* coders/sgi.c: Fix segfault in SGI coder.
* coders/sun.c: Fix segfault during conversion in SUN coder.
* coders/viff.c: Prevent heap corruption in VIFF coder.
* coders/xwd.c: Fix segfault during conversion in XWD coder.
* coders/xwd.c: Fix multiple integer overflows in XWD coder.
(CVE-2007-1667, CVE-2007-1797)
* The above fixes collectively address the following bug report:
Closes: #412945
* config/delegates.xml.in: Lose obsolete option -3 to dcraw delegate
to unbreak support for raw digital images. Closes: #404477
.
imagemagick (7:6.2.4.5.dfsg1-0.14) unstable; urgency=high
.
* Non-maintainer upload.
* coders/palm.c: Fix regression introduced in patch for CVE-2006-5456.
Avoid bogus second read in macro call. Patch thanks to Vladimir
Nadvornik. (CVE-2007-0770) Closes: #410435
.
imagemagick (7:6.2.4.5.dfsg1-0.13) unstable; urgency=high
.
* Non-maintainer upload.
* coders/png.c: Fix amd64 build failure with recent libpng versions.
Closes: #401047
* debian/control: Tighten libpng12-dev build-dependency to exclude versions
that are known to fail to link even with the above fix in place.
.
imagemagick (7:6.2.4.5.dfsg1-0.12) unstable; urgency=high
.
* Non-maintainer upload.
* debian/control: Add build dependency on libxt-dev and pkg-config to
make dependency list deterministic.
* debian/control: libmagick9-dev depends on libxt-dev.
.
imagemagick (7:6.2.4.5.dfsg1-0.11) unstable; urgency=high
.
* Non-maintainer upload.
* coders/dcm.c, coders/palm.c: Fix buffer overflows in DCM and Palm coders.
Patches thanks to M Joonas Pihlaja. Closes: #393025
* coders/sgi.c: Put back missing initialisation of loop variable that
was erroneously removed in fix for CVE-2006-4144. Spotted by
Martin Pitt. Closes: #383314
* coders/sgi.c: Fix off-by-one error in boundary check causing slightly
garbled image output. Also introduced in fix for for CVE-2006-4144.
* coders/xpm.c: Do not gratuitously limit the allowed number of
bytes per pixel. Patch thanks to Jens Seidel. Closes: #358148
* magick/display.c: Fix NULL pointer dereference in display's
"Visual Directory". Patch thanks to Frédéric Bothamy. Closes: #360400
* utilities/ImageMagick.1.in: Replace UTF-8 encoded characters with
latin1 equivalents to placate lintian.
* debian/control: perlmagick provides libimage-magick-perl to comply
with Perl policy. Closes: #317083
* debian/control: Add gs-gpl build dependency, used in testsuite.
* debian/control: Tries hard to comply with version 3.7.2 of Debian
policy.
* debian/rules: Eliminate -l entries that slipped into --ldflags output.
They're already present in --libs anyway. Closes: #340401
* debian/rules: Run the testsuite, but don't treat failures as fatal
errors for now.
* debian/rules: At configure time, change X11 search paths to X11R7
locations.
* debian/rules: Remove duplicate of license file from imagemagick
package.
.
imagemagick (7:6.2.4.5.dfsg1-0.10) unstable; urgency=high
.
* Non-Maintainer Upload
* Fix buffer overflow in SGI parser [CVE-2006-4144] (closes: #383314)
Thanks to Daniel Kobras
* Fix double free in ICC profile in PerlMagick (closes: #349264)
* Fix incomaptibility with graphviz >= 2.8 and build-depend on an
appropriate version (closes: #360362)
* Fix XCF and Sun Raster File buffer overflows [CVE-2006-3743/-3744]
(closes: #385062)
.
imagemagick (7:6.2.4.5.dfsg1-0.9) unstable; urgency=low
.
* Non-Maintainer Upload
* Remove all instances of the imagemagick logo from the original
sourcefile and repack. (closes: #214623)
* Add back the free logo patch
* Add clean-tarball rule to accomplish this
* Change the copyright file to indicate that the logo is no longer
included, and indiciate that the included logo is actually text saying
"imagemagick" with the Debian open use logo.
.
imagemagick (7:6.2.4.5-0.8) unstable; urgency=low
.
* Non-maintainer upload.
* Back to 6.2.4.5 as requested by the release team to maintain binary
compatibility. Bumped epoch once more.
.
imagemagick (6:6.2.6.7-1) unstable; urgency=low
.
* New upstream version.
.
imagemagick (6:6.2.4.5-0.7) unstable; urgency=high
.
* Non-maintainer upload.
* coders/url.c: Do not treat local file:// URIs as temporary files that
are removed after reading. Closes: #352575
.
imagemagick (6:6.2.4.5-0.6) unstable; urgency=high
.
* Non-maintainer upload.
* magick/display.c: In DisplayImageCommand(), expand command line before
allocating ressources based on argc. Patch and analysis thanks to
Eero Häkkinen. Closes: #345595
* magick/{animate.c,blob.c,display.c,image.c,log.c,montage.c,string.c,
string_.h}: Implement new utility function FormatMagickStringNumeric()
to securely expand a user-supplied format string with a single numeric
argument. Adjust code to use this function where appropriate.
(CVE-2006-0082) Closes: #345876
* coders/pdf.c,coders/ps.c,magick/delegate.c,magick/delegate.h,
magick/methods.h: Do not call external delegates with user-supplied
filename, but with securely named symlinks only to prevent shell command
injection (CVE-2005-4601). Closes: #345238
* debian/rules: Make sure to include trailing spaces in multi-line
commands to keep recent make happy. Cures problems with ghostscript
font path. Fix thanks to Jeff Lessem. Closes: #347486
* debian/imagemagick.mime: Rather than autodetect the type of an image,
derive it from the mime type. As a side effect, this change allows to
use arbitrary filenames with the 'see' command, even if they have
special meaning to imagemagick internally. Also clean up some typos
and superfluous entries once we're at it. Closes: #344997
.
imagemagick (6:6.2.4.5-0.5) unstable; urgency=low
.
* Another NMU to complete the installability fixes from 6:6.2.4.5-0.4.
* Adjust libmagick9-dev dependencies to account for the removal of
xlibs-dev from unstable, and bring them in line with build-deps.
.
imagemagick (6:6.2.4.5-0.4) unstable; urgency=low
.
* Non-maintainer upload to resolve buildability/installability.
* debian/{control,rules}: Disable DPS support, which is no longer shipped
in Xorg 6.9/7.0 (and was making us both FTBFS and uninstallable in sid)
* debian/control: explicitely build-depend on libxext-dev, since we both
test for and use it directly, rather than indirectly.
.
imagemagick (6:6.2.4.5-0.3) unstable; urgency=low
.
* Non-maintainer upload.
* debian/control: Rename libmagick++9 to libmagick++9c2a, following a
C++ ABI transition. Conflicts with and Replaces old version.
* debian/*: Rename various debhelper support files due to above name
change.
.
imagemagick (6:6.2.4.5-0.2) unstable; urgency=medium
.
* Non-maintainer upload.
* debian/control: libmagick9-dev Conflicts/Replaces libmagick6-dev.
Likewise for libmagick++9-dev. Closes: #330666
* debian/control: Provide unversioned libmagick-dev and libmagick++-dev
and conflict/replace them for future-proof handling of soname bumps.
.
imagemagick (6:6.2.4.5-0.1) unstable; urgency=low
.
* Non-maintainer upload.
* New upstream version.
+ Yet another bump of the soname version, this time going from
7 to 9.
* debian/*: Cater for soname change and corresponding change of
library packages names in multiple places.
.
imagemagick (6:6.2.4.4-0.1) experimental; urgency=low
.
* Non-maintainer upload.
* New upstream version.
+ Version in library soname was increased from 6 to 7 due to
changes in binary interface starting with 6.0.7. (Yes, this
should have happened earlier.) Closes: #318176, #325651, #325720
* debian/*: Rename packages from libmagick6 to libmagick7, and similar.
Adjust version in various places accordingly. Drop c2 suffix from
C++ library package.
* debian/control: Use shlibs information to generate Depends line for
imagemagick binary package.
* debian/control: Remove Pre-Depends on prehistoric version of dpkg.
* debian/control: Package complies with policy version 3.6.2. Bump
Standards-Version accordingly.
* Patches to upstream sources:
+ [bin/Magick++-config.1.debdiff]
Stray file that seems to have slipped into the previous Debian
diffs by mistake. Removed now.
+ [magick/blob.c]
Originally a patch from upstream, now mostly merged. Retaining a
single hunk that upstream reverted later on, though it still looks
correct.
+ [configure.ac, configure]
Override location of documentation files to Debian's default
/usr/share/doc/imagemagick. Patch to configure was present before.
This release promotes it back to configure.ac as well. (No ill
effects because AM_MAINTAINER_MODE is used.)
+ [coders/magick.c]
Drop patch that exchanges upstream's logo for a DFSG-free version.
This attempt to address #214623 (distribution of non-free logo)
missed several other instances of the logo, must be applied to
the orig.tar.gz rather than the Debian diff, and should have
some input from upstream, so no point in carrying it around still.
Files:
289dcca20cabdc8279e324acfbd5739e 1047 graphics optional imagemagick_6.2.4.5.dfsg1-1.dsc
2c5d3723d25c4119cf003efce2161c56 5203463 graphics optional imagemagick_6.2.4.5.dfsg1.orig.tar.gz
f7f59b4cd2bd6292c84cc1a922cb3191 98891 graphics optional imagemagick_6.2.4.5.dfsg1-1.diff.gz
ed785393f73321c39045a2cfca3c4bcc 739222 graphics optional imagemagick_6.2.4.5.dfsg1-1_i386.deb
03fcdd0be6ac45461187f443c2cdee30 1270866 libs optional libmagick9_6.2.4.5.dfsg1-1_i386.deb
8f082a61b40f4117ac245bfc24203fcf 1578224 libdevel optional libmagick9-dev_6.2.4.5.dfsg1-1_i386.deb
be8022b4e8d154339e9e471c11f3af38 176368 libs optional libmagick++9c2a_6.2.4.5.dfsg1-1_i386.deb
aa5279c10479f169fdd0057e2a1cba01 227988 libdevel optional libmagick++9-dev_6.2.4.5.dfsg1-1_i386.deb
f4807e698dc13e1bb46fe5c3e48c2dbd 168080 perl optional perlmagick_6.2.4.5.dfsg1-1_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (Darwin)
iD8DBQFGNiompOKIA4m/fisRAlQ5AJ4rul+sr6wTCvZzTo+azk3g0yKMfACgyGeT
uFkhOZ7y6MlMxNtiZ8wB0No=
=pe/9
-----END PGP SIGNATURE-----
Bug archived.
Request was from Debbugs Internal Request <owner@bugs.debian.org>
to internal_control@bugs.debian.org.
(Wed, 04 Jul 2007 07:53:42 GMT) (full text, mbox, link).
Send a report that this bug log contains spam.
Debian bug tracking system administrator <owner@bugs.debian.org>.
Last modified:
Wed Jun 19 19:21:59 2019;
Machine Name:
buxtehude
Debian Bug tracking system
Debbugs is free software and licensed under the terms of the GNU
Public License version 2. The current version can be obtained
from https://bugs.debian.org/debbugs-source/.
Copyright © 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson,
2005-2017 Don Armstrong, and many other contributors.
Vulmon