imagemagick: security bump to 7.0.3-8

Message ID	20161127211133.18966-1-peter@korsgaard.com
State	Accepted
Headers	show Return-Path: <buildroot-bounces@busybox.net> From: Peter Korsgaard <peter@korsgaard.com> To: buildroot@buildroot.org Date: Sun, 27 Nov 2016 22:11:33 +0100 Message-Id: <20161127211133.18966-1-peter@korsgaard.com> Subject: [Buildroot] [PATCH] imagemagick: security bump to 7.0.3-8 Precedence: list MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Errors-To: buildroot-bounces@busybox.net Sender: "buildroot" <buildroot-bounces@busybox.net>

Message ID

20161127211133.18966-1-peter@korsgaard.com

State

Accepted

Headers

From: Peter Korsgaard <peter@korsgaard.com>
To: buildroot@buildroot.org
Date: Sun, 27 Nov 2016 22:11:33 +0100
Message-Id: <20161127211133.18966-1-peter@korsgaard.com>
Subject: [Buildroot] [PATCH] imagemagick: security bump to 7.0.3-8
Precedence: list
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: buildroot-bounces@busybox.net
Sender: "buildroot" <buildroot-bounces@busybox.net>

Commit Message

Peter Korsgaard Nov. 27, 2016, 9:11 p.m. UTC

Fixes CVE-2016-9556 (Heap buffer overflow in IsPixelGray).

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
---
 package/imagemagick/imagemagick.hash | 2 +-
 package/imagemagick/imagemagick.mk   | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

Comments

Thomas Petazzoni Nov. 27, 2016, 9:23 p.m. UTC | #1

Hello,

On Sun, 27 Nov 2016 22:11:33 +0100, Peter Korsgaard wrote:
> Fixes CVE-2016-9556 (Heap buffer overflow in IsPixelGray).
> 
> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
> ---
>  package/imagemagick/imagemagick.hash | 2 +-
>  package/imagemagick/imagemagick.mk   | 2 +-
>  2 files changed, 2 insertions(+), 2 deletions(-)

Applied to master, thanks.

Thomas

diff --git a/package/imagemagick/imagemagick.hash b/package/imagemagick/imagemagick.hash
index 4bdfe8f..9eb3a9e 100644
--- a/package/imagemagick/imagemagick.hash
+++ b/package/imagemagick/imagemagick.hash
@@ -1,2 +1,2 @@ 
 # From http://www.imagemagick.org/download/releases/digest.rdf
-sha256 140b99f33a3326aed92132a7cd054ee962a6e2562064c68495640411aa4571d7  ImageMagick-7.0.3-7.tar.xz
+sha256 dc128b281c255d71d754934408d278b3ca314253103ca2501cd0b8d5ec98db74  ImageMagick-7.0.3-8.tar.xz
diff --git a/package/imagemagick/imagemagick.mk b/package/imagemagick/imagemagick.mk
index 4f5c3be..f384fc3 100644
--- a/package/imagemagick/imagemagick.mk
+++ b/package/imagemagick/imagemagick.mk
@@ -4,7 +4,7 @@ 
 #
 ################################################################################
 
-IMAGEMAGICK_VERSION = 7.0.3-7
+IMAGEMAGICK_VERSION = 7.0.3-8
 IMAGEMAGICK_SOURCE = ImageMagick-$(IMAGEMAGICK_VERSION).tar.xz
 IMAGEMAGICK_SITE = http://www.imagemagick.org/download/releases
 IMAGEMAGICK_LICENSE = Apache-2.0

imagemagick: security bump to 7.0.3-8

Commit Message

Comments

Patch