From mboxrd@z Thu Jan 1 00:00:00 1970 From: Kei Kebreau Subject: [PATCH] gnu: imagemagick: Update to 7.0.3-4 [Fixes CVE-2016-{8677, 8862}]. Date: Tue, 25 Oct 2016 16:12:50 -0400 Message-ID: <87eg346vct.fsf@openmailbox.org> Mime-Version: 1.0 Content-Type: multipart/signed; boundary="==-=-="; micalg=pgp-sha256; protocol="application/pgp-signature" Return-path: Received: from eggs.gnu.org ([2001:4830:134:3::10]:37143) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1bz85l-000385-TZ for guix-devel@gnu.org; Tue, 25 Oct 2016 16:13:02 -0400 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1bz85i-0003x0-PF for guix-devel@gnu.org; Tue, 25 Oct 2016 16:13:01 -0400 Received: from smtp20.openmailbox.org ([62.4.1.54]:45689 helo=smtp5.openmailbox.org) by eggs.gnu.org with esmtps (TLS1.0:DHE_RSA_AES_128_CBC_SHA1:16) (Exim 4.71) (envelope-from ) id 1bz85i-0003wE-Gg for guix-devel@gnu.org; Tue, 25 Oct 2016 16:12:58 -0400 List-Id: "Development of GNU Guix and the GNU System distribution." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org Sender: "Guix-devel" To: guix-devel@gnu.org --==-=-= Content-Type: multipart/mixed; boundary="=-=-=" --=-=-= Content-Type: text/plain See: https://blogs.gentoo.org/ago/2016/10/07/imagemagick-memory-allocate-failure-in-acquirequantumpixels-quantum-c and https://blogs.gentoo.org/ago/2016/10/17/imagemagick-memory-allocation-failure-in-acquiremagickmemory-memory-c/. --=-=-= Content-Type: text/plain Content-Disposition: attachment; filename=0001-gnu-imagemagick-Update-to-7.0.3-4-Fixes-CVE-2016-867.patch Content-Transfer-Encoding: quoted-printable From=2082f792a33f55e6514d3d4f8285e9be3b8c6e161a Mon Sep 17 00:00:00 2001 From: Kei Kebreau Date: Tue, 25 Oct 2016 16:03:26 -0400 Subject: [PATCH] gnu: imagemagick: Update to 7.0.3-4 [Fixes CVE-2016-{8677,8862}]. * gnu/packages/imagemagick.scm (imagemagick): Update to 7.0.3-4. =2D-- gnu/packages/imagemagick.scm | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/gnu/packages/imagemagick.scm b/gnu/packages/imagemagick.scm index 4c3c636..0a95920 100644 =2D-- a/gnu/packages/imagemagick.scm +++ b/gnu/packages/imagemagick.scm @@ -43,14 +43,14 @@ (define-public imagemagick (package (name "imagemagick") =2D (version "6.9.6-2") + (version "7.0.3-4") (source (origin (method url-fetch) (uri (string-append "mirror://imagemagick/ImageMagick-" version ".tar.xz")) (sha256 (base32 =2D "139h9lycxw3lszn052m34xm0rqyanin4nb529vxjcrkkzqilh91r")))) + "1jj7w9cg9qim0ib880mb4mxhd007045h721hm6318ayyfx0g18c6")))) (build-system gnu-build-system) (arguments `(#:configure-flags '("--with-frozenpaths" "--without-gcc-arch") =2D-=20 2.10.1 --=-=-=-- --==-=-= Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCAAGBQJYD7zCAAoJEOal7jwZRnoNx54P/1/aO4L+ftkL1UdsiEeD9hJF 28gxlxPomXd3Is1OcEH6iSxzKBjO0w7JCP9hm5tjHPjf0fTG0SHekqtNlddKEVE4 EO96fgcmF/APpEQyYx7MubcW451iNJOGwKXu2qYZeVObVQ2lc8tonM+HO4r+9P6i jiCtOX2GcIVA2tsqpQ0zca1vMnub6cPfRl6EL5RQn0QmmNhxBAjEBvBeZXO9wofE 69/PN3OpwMo7c/AcgC/7E1zro4DbD+q9LBmKD5IruomGqgMDuUrvTSdbdlDSsUkw O705mrWG+qHj0hhub1Ea1tFrm5i/exUxj/FFjIHfXwUJpBJkC8rH4OziboWxv3Yv AYXBmpUZRZbB/rjC1OI7Cy8T+FoxRZxBzoF91yUBT23RLXtdJVzRQLDP1CMopv15 oX8xFR84OAzhvI+tX3xjor03XFPOSGfRt3b7cdkVPSeJDnXgvC/CIttj0PkhZWQN 7Zp3BOA8KW4O/zmYrF0w98dJ1YuSrae36ibXDHzB9ZfT4+PbuUfGEX2vo6d1xdMv iBysg9CCqRV+0voeJL1nItYs0KmMtvgfm4QsLW3l3zzS3w69TQAvpLNBwb4LGSBi NQYM18Rjr38AgLhCYXXrODzNzvNQFkf/mTeP0AA3o1Tx3FOQZJkuGaGVrdCiAfWQ +QLESXElZJqWfiWjuwGU =/dOk -----END PGP SIGNATURE----- --==-=-=--