./graphics/GraphicsMagick, X application for displaying and manipulating images

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: pkgsrc-2017Q2, Version: 1.3.26, Package name: GraphicsMagick-1.3.26, Maintainer: pkgsrc-users

GraphicsMagick(TM) provides a powerful image manipulation and
translation utility. It is capable of displaying still images and
animations using the X Window system, provides a simple interface for
interactively editing images, and is capable of importing selected
windows or the entire desktop. GraphicsMagick can read and write over
88 image formats, including JPEG, TIFF, WMF, SVG, PNG, PNM, GIF, and
Photo CD. It can resize, rotate, sharpen, color reduce, or add
special effects to the image and save the result to any supported
format. GraphicsMagick may be used to create animated or transparent
.gifs, create composite images, create thumbnail images, and much,
much, more.

GraphicsMagick is one of your choices if you need a program to
manipulate and display images. If you want to develop your own
applications which use GraphicsMagick code or APIs, you need to
install GraphicsMagick-devel as well.


Required to run:
[devel/pkgconf] [devel/libltdl] [graphics/png] [graphics/jbigkit] [graphics/tiff] [graphics/lcms2] [graphics/jasper] [graphics/libwebp] [graphics/freetype2] [print/ghostscript] [textproc/libxml2] [fonts/urw-fonts]

Required to build:
[pkgtools/x11-links] [pkgtools/cwrappers]

Package options: bzip2, jasper, lzma, x11

Master sites:

SHA1: 2cc885d1b157996aa14c98e34f7aa17815d00c41
RMD160: 3dd490364c3e4498c308c38b26a0fe41cf4e81f2
Filesize: 5273.988 KB

Version history: (Expand)

CVS history: (Expand)


   2017-07-23 21:52:42 by S.P.Zeidler | Files touched by this commit (4) | Package updated
Log message:
Pullup ticket #5518 - requested by taca
graphics/GraphicsMagick: security update

Revisions pulled up:
- graphics/GraphicsMagick/Makefile                              1.81
- graphics/GraphicsMagick/Makefile.common                       1.17
- graphics/GraphicsMagick/PLIST                                 1.25
- graphics/GraphicsMagick/distinfo                              1.43

-------------------------------------------------------------------
   Module Name:	pkgsrc
   Committed By:	adam
   Date:		Sun Jul  9 20:02:28 UTC 2017

   Modified Files:
   	pkgsrc/graphics/GraphicsMagick: Makefile Makefile.common PLIST distinfo
   	pkgsrc/graphics/p5-GraphicsMagick: Makefile

   Log message:
   1.3.26:

   Security Fixes:
   ---------------
   DPX: Fix excessive use of memory (DOS issue) due to file header claiming \ 
large image dimensions but insufficient backing data. (CVE-2017-10799).
   JNG: Fix memory leak when reading invalid JNG image (CVE-2017-8350).
   MAT: Fix excessive use of memory (DOS issue) due to continuing processing \ 
with insufficient data and claimed large image size. Verify each file extent to \ 
make sure that it is within range of file size. (CVE-2017-10800).
   META: Fix heap overflow while parsing 8BIM chunk (CVE-2016-7800).
   PCX: Fix denial of service issue.
   RLE: Fix abnomally slow operation (denial of service issue) with \ 
intentionally corrupt colormapped file.
   PICT: Fix possible buffer overflow vulnerability given suitably truncated \ 
input file.
   PNG: Enforce spec requirement that the dimensions of the JPEG embedded in a \ 
JDAT chunk must match the JHDR dimensions (CVE-2016-9830).
   PNG: Avoid NULL dereference when MAGN chunk processing fails.
   SCT: Fix stack-buffer read overflow (underflow?) while reading SCT header.
   SGI: Fix denial of service issues. Delay large memory allocations until file \ 
header has fully passed sanity checks.
   TIFF: Fix out of bounds read when reading CMYKA TIFF which claims to have \ 
only 2 samples per pixel (CVE-2017-6335).
   TIFF: Fix out of bounds read when reading RGB TIFF which claims to have only \ 
1 sample per pixel (CVE-2017-10794).
   WPG: Fix heap overflow (CVE-2016-7996). Fix assertion crash (CVE-2016-7997).

   Bug fixes:
   ----------
   DifferenceImage(): Fix Fix all-black difference image if an input file is \ 
colormapped.
   EXIF orientation was not being properly detected for some files.
   -frame: The import command -frame handling was improperly implemented and was \ 
using already freed data.
   GIF: Fixes for "Excessive LZW string data" problem.
   Magick++: Bug fixes to PathSmoothCurvetoRel::operator() and \ 
PathSmoothCurvetoRel::operator().
   PAM: Support writing GRAYSCALE PAM format.
   PNG: Fix memory leaks.
   SVG: Fixed a memory leak. Fixed a possible null pointer dereference.
   TclMagick: Problem that TkMagick could not resolve functions from TclMagick \ 
under Linux is fixed.
   TclMagick: Fix parser validatation in magickCmd() to avoid crash given a \ 
syntax error.
   TIFF: Fix for reading old JPEG files (avoids "Improper call to JPEG \ 
library in state 0. (LibJpeg).").
   TXT: Fixed memory leak.
   XCF: Error checking is improved.

   New Features:
   -------------
   EXIF rotation: Support is added such that the EXIF orientation tag is updated \ 
when the image is rotated.
   MAT: Now support reading multiple images from Matlab V4 format.
   Magick++: Orientation method now updates orientation in EXIF profile, if it \ 
exists.
   Magick++: Added Image attribute method which accepts a 'char *' argument, and \ 
will remove the attribute if the value argument is NULL.
   -orient: The -orient command line option now also updates the orientation in \ 
the EXIF profile, if it exists.
   PGX: Support PGX JPEG 2000 format for reading and writing (within the bounds \ 
of what JasPer supports).
   Wand API: Added MagickAutoOrientImage(), MagickGetImageOrientation(), \ 
MagickSetImageOrientation(), MagickRemoveImageOption(), and \ 
MagickClearException().

   To generate a diff of this commit:
   cvs rdiff -u -r1.80 -r1.81 pkgsrc/graphics/GraphicsMagick/Makefile
   cvs rdiff -u -r1.16 -r1.17 pkgsrc/graphics/GraphicsMagick/Makefile.common
   cvs rdiff -u -r1.24 -r1.25 pkgsrc/graphics/GraphicsMagick/PLIST
   cvs rdiff -u -r1.42 -r1.43 pkgsrc/graphics/GraphicsMagick/distinfo