From 72b93bb6768654bc37e0dd9bc301a7ce5876962b Mon Sep 17 00:00:00 2001 From: Gustavo Zacarias Date: Tue, 10 May 2016 15:25:46 -0300 Subject: [PATCH] imagemagick: security bump to version 6.9.4-1 Fixes: Fix GetNextToken() off by one error. Check for buffer overflow in magick/draw.c/DrawStrokePolygon(). Remove support for internal ephemeral coder. These are all related to the recent ImageTragick bundle that were partially fixed in 6.9.3-10 as well. Signed-off-by: Gustavo Zacarias Signed-off-by: Peter Korsgaard --- package/imagemagick/imagemagick.hash | 2 +- package/imagemagick/imagemagick.mk | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/package/imagemagick/imagemagick.hash b/package/imagemagick/imagemagick.hash index 135989ffcf..9a2a3eee56 100644 --- a/package/imagemagick/imagemagick.hash +++ b/package/imagemagick/imagemagick.hash @@ -1,2 +1,2 @@ # From http://www.imagemagick.org/download/releases/digest.rdf -sha256 e33f021c879f31703f9e620f578ccf7d221a34941589da4bbe967b16a814336a ImageMagick-6.9.3-10.tar.xz +sha256 2ea0fef839cd5d6f134502b7cf7ee0e57a3f230b19771515d4aa44354f4c6b3b ImageMagick-6.9.4-1.tar.xz diff --git a/package/imagemagick/imagemagick.mk b/package/imagemagick/imagemagick.mk index 8ecf5d6350..c952c2a5d1 100644 --- a/package/imagemagick/imagemagick.mk +++ b/package/imagemagick/imagemagick.mk @@ -4,7 +4,7 @@ # ################################################################################ -IMAGEMAGICK_VERSION = 6.9.3-10 +IMAGEMAGICK_VERSION = 6.9.4-1 IMAGEMAGICK_SOURCE = ImageMagick-$(IMAGEMAGICK_VERSION).tar.xz IMAGEMAGICK_SITE = http://www.imagemagick.org/download/releases IMAGEMAGICK_LICENSE = Apache-2.0 -- 2.30.2