SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for perl-image-magick-6.3.5.10-1tr.i586.rpm :
Wed Sep 26 03:00:00 2007 Nived Gopalan 6.3.5.10-1tr
- New Upstream.
- SECURITY Fix: Some vulnerabilities have been reported in ImageMagick,
which can be exploited by malicious people to conduct DoS attacks or
compromise a user\'s system.
- Includes fix for CVE-2007-4986, CVE-2007-4987 and CVE-2007-4988.

Thu Apr 5 03:00:00 2007 Nived Gopalan 6.3.3.5-1tr
- New Upstream.
- SECURITY Fix: Some vulnerabilities have been reported in ImageMagick,
which can be exploited by malicious people to compromise a vulnerable
system.
- A integer overflow error within the \"ReadDCMImage()\" function can be
exploited to cause a heap-based buffer overflow when processing
specially crafted DCM images.
- Two integer overflows within the \"ReadXWDImage()\" function when
calculating the amount of memory to be allocated for the \'colors\' or
\'comment\' fields can be exploited to cause heap-based buffer overflows
when processing specially crafted XWD images.

The Common Vulnerabilities and Exposures project (cve.mitre.org) has
assigned the name CVE-2007-1797 to this issue.

Mon Nov 13 02:00:00 2006 Bipin S 6.3.0.1-2tr
- Fixed undefined symbols, Bug #2035.

Wed Nov 1 02:00:00 2006 Bipin S 6.3.0.1-1tr
- New upstream.

Fri Aug 25 03:00:00 2006 Nived Gopalan 6.2.9.1-1tr
- New Upstream.
- SECURITY Fix: Tavis Ormandy has reported some vulnerabilities in
ImageMagick, which potentially can be exploited by malicious people
to compromise a vulnerable system.
- Fix boundary errors within the \"DecodeBitmap()\" function and the
\"ReadSUNImage()\" function in sun.c which can be exploited to cause
heap-based buffer overflows when processing specially crafted
Sun Rasterfile images.
- Fix boundary errors within the XCF image decoder which can be
exploited to cause a stack-based and a heap-based overflow when
processing specially crafted XCF image files.

The Common Vulnerabilities and Exposures project (cve.mitre.org) has
assigned the names CVE-2006-3744 and CVE-2006-3743 to this issue.

Thu Aug 17 03:00:00 2006 Nived Gopalan 6.2.9-1tr
- New Upstream.
- SECURITY Fix: Damian Put has discovered a vulnerability in ImageMagick,
which can be exploited by malicious people to cause a DoS (Denial of
Service) or potentially compromise a user\'s system. The vulnerability
is caused due to an integer overflow in the \"ReadSGIImage()\" function
when decoding SGI image files.

The Common Vulnerabilities and Exposures project (cve.mitre.org) has
assigned the name CVE-2006-4144 to this issue.

Fri Jan 27 02:00:00 2006 Bipin S 6.2.6-1tr
- New Upstream.
- Removed /usr/lib/libltdl.
* from spec.
- Added with-perl-options in configure

Fri Jul 1 03:00:00 2005 Ajith Thampi 6.2.3-1tr
- Fixed an obscure heap-overflow vulnerability in the PNM reader reported by
Damian Put.
- Fixed memory overflow computation.

Tue Apr 26 03:00:00 2005 Ajith Thampi 6.2.2-2tr
- Remote exploitation of a heap overflow vulnerability could allow
execution of arbitrary code or couse denial of service.A heap overflow
exists in ReadPNMImage() function, that is used to decode a PNM image files.
- Fix Silent File Conflicts

Tue Apr 26 03:00:00 2005 Ajith Thampi 6.2.2-1tr
- New Upstream
- Fixes Heap Overflow Vulnerability

Fri Apr 1 03:00:00 2005 Bipin S 6.2.1-2tr
- Imported from tsl-2.2 contribs.

Tue Feb 8 02:00:00 2005 Raghu 6.1.8-1ra
- New Upstream

Tue Nov 16 02:00:00 2004 Chr. Toldnes 6.1.4-2ct
- Cleanup for official contrib

Sun Nov 14 02:00:00 2004 Morten Nilsen
- Upgrade and clean up package

Mon Oct 20 03:00:00 2003 Morten Nilsen
- made initial cut


  
ICM