From owner-freebsd-ports-bugs@freebsd.org Mon Nov 14 22:41:36 2016 Return-Path: Delivered-To: freebsd-ports-bugs@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 8B66FC41955 for ; Mon, 14 Nov 2016 22:41:36 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2001:1900:2254:206a::16:76]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 600998A5 for ; Mon, 14 Nov 2016 22:41:36 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from bugs.freebsd.org ([127.0.1.118]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id uAEMfZH8096363 for ; Mon, 14 Nov 2016 22:41:36 GMT (envelope-from bugzilla-noreply@freebsd.org) From: bugzilla-noreply@freebsd.org To: freebsd-ports-bugs@FreeBSD.org Subject: [Bug 214517] graphics/ImageMagick: Update to 6.9.6-4 (security fixes) Date: Mon, 14 Nov 2016 22:41:35 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: new X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Ports & Packages X-Bugzilla-Component: Individual Port(s) X-Bugzilla-Version: Latest X-Bugzilla-Keywords: needs-qa, patch, security X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: vlad-fbsd@acheronmedia.com X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: kwm@FreeBSD.org X-Bugzilla-Flags: maintainer-feedback? merge-quarterly? X-Bugzilla-Changed-Fields: bug_id short_desc product version rep_platform bug_file_loc op_sys bug_status keywords bug_severity priority component assigned_to reporter cc flagtypes.name attachments.created Message-ID: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-ports-bugs@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: Ports bug reports List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 14 Nov 2016 22:41:36 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D214517 Bug ID: 214517 Summary: graphics/ImageMagick: Update to 6.9.6-4 (security fixes) Product: Ports & Packages Version: Latest Hardware: Any URL: https://github.com/ImageMagick/ImageMagick/blob/6.9.6- 4/ChangeLog OS: Any Status: New Keywords: needs-qa, patch, security Severity: Affects Some People Priority: --- Component: Individual Port(s) Assignee: kwm@FreeBSD.org Reporter: vlad-fbsd@acheronmedia.com CC: kwm@FreeBSD.org, ports-secteam@FreeBSD.org Attachment #177008 maintainer-approval?(kwm@FreeBSD.org) Flags: Flags: maintainer-feedback?(kwm@FreeBSD.org), merge-quarterly? Assignee: kwm@FreeBSD.org CC: kwm@FreeBSD.org Created attachment 177008 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D177008&action= =3Dedit Bump ImageMagick to 6.9.6-4 Please bump ImageMagick to latest version, 6.9.6-4. Summarized changelog si= nce 6.9.5-10: * Off by one memory allocation (reference https://github.com/ImageMagick/ImageMagick/issues/296). * Prevent fault in MSL interpreter (reference https://www.imagemagick.org/discourse-server/viewtopic.php?f=3D3&t=3D30= 797). * Added layer ZIP compression to the PSD encoder. * Unit test pass again after small SUN image patch. * Fixed incorrect RLE decoding when reading a DCM image that contains multiple segments. * Fixed incorrect RLE decoding when reading an SGI image (reference=20 https://www.imagemagick.org/discourse-server/viewtopic.php?f=3D3&t=3D30= 514) Fixes CVE-2016-9298 (upstream issue 296). Passes Poudriere build test for 11.0 amd64, both ImageMagick and ImageMagick-nox11. Currently testing 10.3 and 9.3. --=20 You are receiving this mail because: You are the assignee for the bug.=