www/api/Image++.html | 268 134 + 134 - 0 !
1 file changed, 134 insertions(+), 134 deletions(-)

 fix br tag

find . -path './.git' -prune -o -type 'f' -name '*.html' -exec sed -i 's,<br>,<br />,g' {} \;

www/api/Image++.html | 17 8 + 9 - 0 !
1 file changed, 8 insertions(+), 9 deletions(-)

 fix api/image++.html

www/api/morphology.html | 8 4 + 4 - 0 !
1 file changed, 4 insertions(+), 4 deletions(-)

 fix www/api/mophologie.html

www/command-line-options.html | 721 720 + 1 - 0 !
1 file changed, 720 insertions(+), 1 deletion(-)

 fix www/command-line-options.html

configure.ac | 11 5 + 6 - 0 !
1 file changed, 5 insertions(+), 6 deletions(-)

 use modern idiom for autoconf

configure.ac | 12 12 + 0 - 0 !
utilities/conjure.1.in | 4 2 + 2 - 0 !
utilities/convert.1.in | 5 3 + 2 - 0 !
utilities/display.1.in | 4 2 + 2 - 0 !
utilities/identify.1.in | 4 2 + 2 - 0 !
utilities/import.1.in | 4 2 + 2 - 0 !
utilities/mogrify.1.in | 4 2 + 2 - 0 !
utilities/montage.1.in | 5 3 + 2 - 0 !
utilities/stream.1.in | 4 2 + 2 - 0 !
9 files changed, 30 insertions(+), 16 deletions(-)

 allow distribution to custumize the html pointer to documentation

Allow to say on debian system you might install the imagemagick-doc package

config/policy.xml | 26 18 + 8 - 0 !
1 file changed, 18 insertions(+), 8 deletions(-)

 improve policy in order to be safer

Limit memory and disk to safe value.

Disable http delegate. You should really use curl

www/changelog.html | 15 8 + 7 - 0 !
www/download.html | 5 3 + 2 - 0 !
www/index.html | 1 0 + 1 - 0 !
3 files changed, 11 insertions(+), 10 deletions(-)

 fix remaining error in html files

configure.ac | 5 4 + 1 - 0 !
utilities/ImageMagick.1.in | 6 3 + 3 - 0 !
utilities/animate.1.in | 8 4 + 4 - 0 !
utilities/compare.1.in | 8 4 + 4 - 0 !
utilities/composite.1.in | 8 4 + 4 - 0 !
utilities/conjure.1.in | 8 4 + 4 - 0 !
utilities/convert.1.in | 8 4 + 4 - 0 !
utilities/display.1.in | 8 4 + 4 - 0 !
utilities/identify.1.in | 8 4 + 4 - 0 !
utilities/import.1.in | 8 4 + 4 - 0 !
utilities/mogrify.1.in | 10 5 + 5 - 0 !
utilities/montage.1.in | 8 4 + 4 - 0 !
utilities/stream.1.in | 8 4 + 4 - 0 !
13 files changed, 52 insertions(+), 49 deletions(-)

 improve man page to use version information and quantum

Use ls *.in |sed 's,[.]1.in,,g' |xargs -n1 sh -c 'sed -i "s,$1(1),$1-im@MAGICK_MAJOR_VERSION@.@MAGICK_ABI_SUFFIX_LC@(1),g" *.in' sedtest
use ls *.in |sed 's,[.]1.in,,g' |xargs -n1 sh -c 'sed -i "s,fB$1,fB$1-im@MAGICK_MAJOR_VERSION@.@MAGICK_ABI_SUFFIX_LC@,g" *.in' sedtest
use  ls *.in |sed 's,[.]1.in,,g' |xargs -n1 sh -c 'sed -i "s,.TH $1,.TH $1-im@MAGICK_MAJOR_VERSION@.@MAGICK_ABI_SUFFIX_LC@,g" *.in' sedtest

www/changelog.html | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 fix changelog tag mismatch

www/api/Image++.html | 14 6 + 8 - 0 !
1 file changed, 6 insertions(+), 8 deletions(-)

 fix html error in api/image++.html

www/escape.html | 1 1 + 0 - 0 !
1 file changed, 1 insertion(+)

 fix www/escape.html

www/magick-script.html | 1 1 + 0 - 0 !
1 file changed, 1 insertion(+)

 fix www/magick-script.html

www/support.html | 1 1 + 0 - 0 !
1 file changed, 1 insertion(+)

 fix www/support.html

index.html | 8 4 + 4 - 0 !
www/ImageMagickObject.html | 7 4 + 3 - 0 !
www/advanced-unix-installation.html | 8 5 + 3 - 0 !
www/advanced-windows-installation.html | 7 4 + 3 - 0 !
www/animate.html | 7 4 + 3 - 0 !
www/api/animate.html | 9 4 + 5 - 0 !
www/api/annotate.html | 9 4 + 5 - 0 !
www/api/attribute.html | 9 4 + 5 - 0 !
www/api/blob.html | 9 4 + 5 - 0 !
www/api/cache-view.html | 9 4 + 5 - 0 !
www/api/cache.html | 9 4 + 5 - 0 !
www/api/channel.html | 9 4 + 5 - 0 !
www/api/cipher.html | 9 4 + 5 - 0 !
www/api/color.html | 9 4 + 5 - 0 !
www/api/colormap.html | 9 4 + 5 - 0 !
www/api/colorspace.html | 9 4 + 5 - 0 !
www/api/compare.html | 9 4 + 5 - 0 !
www/api/composite.html | 9 4 + 5 - 0 !
www/api/constitute.html | 9 4 + 5 - 0 !
www/api/decorate.html | 9 4 + 5 - 0 !
www/api/deprecate.html | 9 4 + 5 - 0 !
www/api/display.html | 9 4 + 5 - 0 !
www/api/distort.html | 9 4 + 5 - 0 !
www/api/draw.html | 9 4 + 5 - 0 !
www/api/drawing-wand.html | 9 4 + 5 - 0 !
www/api/effect.html | 9 4 + 5 - 0 !
www/api/enhance.html | 9 4 + 5 - 0 !
www/api/exception.html | 9 4 + 5 - 0 !
www/api/feature.html | 9 4 + 5 - 0 !
www/api/fourier.html | 9 4 + 5 - 0 !
www/api/fx.html | 9 4 + 5 - 0 !
www/api/histogram.html | 9 4 + 5 - 0 !
www/api/image-view.html | 9 4 + 5 - 0 !
www/api/image.html | 9 4 + 5 - 0 !
www/api/layer.html | 9 4 + 5 - 0 !
www/api/list.html | 9 4 + 5 - 0 !
www/api/magick++-classes.html | 5 2 + 3 - 0 !
www/api/magick-deprecate.html | 9 4 + 5 - 0 !
www/api/magick-image.html | 9 4 + 5 - 0 !
www/api/magick-property.html | 9 4 + 5 - 0 !
www/api/magick-wand.html | 9 4 + 5 - 0 !
www/api/magick.html | 9 4 + 5 - 0 !
www/api/memory.html | 9 4 + 5 - 0 !
www/api/mime.html | 9 4 + 5 - 0 !
www/api/module.html | 9 4 + 5 - 0 !
www/api/mogrify.html | 9 4 + 5 - 0 !
www/api/monitor.html | 9 4 + 5 - 0 !
www/api/montage.html | 9 4 + 5 - 0 !
www/api/morphology.html | 9 4 + 5 - 0 !
www/api/paint.html | 9 4 + 5 - 0 !
www/api/pixel-iterator.html | 9 4 + 5 - 0 !
www/api/pixel-wand.html | 9 4 + 5 - 0 !
www/api/profile.html | 9 4 + 5 - 0 !
www/api/property.html | 9 4 + 5 - 0 !
www/api/quantize.html | 9 4 + 5 - 0 !
www/api/registry.html | 9 4 + 5 - 0 !
www/api/resize.html | 9 4 + 5 - 0 !
www/api/resource.html | 9 4 + 5 - 0 !
www/api/segment.html | 9 4 + 5 - 0 !
www/api/shear.html | 9 4 + 5 - 0 !
www/api/signature.html | 9 4 + 5 - 0 !
www/api/statistic.html | 9 4 + 5 - 0 !
www/api/stream.html | 9 4 + 5 - 0 !
www/api/transform.html | 9 4 + 5 - 0 !
www/api/version.html | 9 4 + 5 - 0 !
www/api/wand-view.html | 9 4 + 5 - 0 !
www/architecture.html | 8 5 + 3 - 0 !
www/changelog.html | 2 1 + 1 - 0 !
www/cipher.html | 7 4 + 3 - 0 !
www/color-management.html | 10 6 + 4 - 0 !
www/color.html | 7 4 + 3 - 0 !
www/command-line-options.html | 7 4 + 3 - 0 !
www/command-line-processing.html | 7 4 + 3 - 0 !
www/command-line-tools.html | 7 4 + 3 - 0 !
www/compare.html | 9 5 + 4 - 0 !
www/compose.html | 7 4 + 3 - 0 !
www/composite.html | 7 4 + 3 - 0 !
www/conjure.html | 7 4 + 3 - 0 !
www/connected-components.html | 7 4 + 3 - 0 !
www/contact.html | 6 3 + 3 - 0 !
www/convert.html | 7 4 + 3 - 0 !
www/develop.html | 8 5 + 3 - 0 !
www/display.html | 7 4 + 3 - 0 !
www/distribute-pixel-cache.html | 7 4 + 3 - 0 !
www/download.html | 2 1 + 1 - 0 !
www/escape.html | 7 4 + 3 - 0 !
www/examples.html | 7 4 + 3 - 0 !
www/exception.html | 7 4 + 3 - 0 !
www/export.html | 7 4 + 3 - 0 !
www/formats.html | 7 4 + 3 - 0 !
www/fx.html | 7 4 + 3 - 0 !
www/gradient.html | 10 5 + 5 - 0 !
www/high-dynamic-range.html | 7 4 + 3 - 0 !
www/history.html | 7 4 + 3 - 0 !
www/identify.html | 7 4 + 3 - 0 !
www/import.html | 7 4 + 3 - 0 !
www/install-source.html | 7 4 + 3 - 0 !
www/jp2.html | 7 4 + 3 - 0 !
www/license.html | 8 4 + 4 - 0 !
www/links.html | 7 4 + 3 - 0 !
www/magick++.html | 7 4 + 3 - 0 !
www/magick-core.html | 7 4 + 3 - 0 !
www/magick-script.html | 7 3 + 4 - 0 !
www/magick-vector-graphics.html | 7 4 + 3 - 0 !
www/magick-wand.html | 7 4 + 3 - 0 !
www/magick.html | 9 4 + 5 - 0 !
www/miff.html | 7 4 + 3 - 0 !
www/mirror.html | 7 4 + 3 - 0 !
www/mogrify.html | 7 4 + 3 - 0 !
www/montage.html | 7 4 + 3 - 0 !
www/motion-picture.html | 7 4 + 3 - 0 !
www/opencl.html | 7 4 + 3 - 0 !
www/openmp.html | 7 4 + 3 - 0 !
www/perl-magick.html | 7 4 + 3 - 0 !
www/porting.html | 7 4 + 3 - 0 !
www/quantize.html | 7 4 + 3 - 0 !
www/resources.html | 7 4 + 3 - 0 !
www/search.html | 8 3 + 5 - 0 !
www/security-policy.html | 10 5 + 5 - 0 !
www/sitemap.html | 7 4 + 3 - 0 !
www/stream.html | 7 4 + 3 - 0 !
www/support.html | 6 3 + 3 - 0 !
www/webp.html | 7 4 + 3 - 0 !
123 files changed, 488 insertions(+), 498 deletions(-)

 fix < instead of &lt; and input form

www/api.html | 224 224 + 0 - 0 !
www/binary-releases.html | 495 495 + 0 - 0 !
2 files changed, 719 insertions(+)

 fix another errors in html files

www/index.html | 8 4 + 4 - 0 !
1 file changed, 4 insertions(+), 4 deletions(-)

 fix index.html

www/advanced-windows-installation.html | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 fix end tags

www/binary-releases.html | 1 0 + 1 - 0 !
www/changelog.html | 12 7 + 5 - 0 !
www/defines.html | 96 93 + 3 - 0 !
www/index.html | 10 10 + 0 - 0 !
www/search.html | 1 1 + 0 - 0 !
www/security-policy.html | 1 1 + 0 - 0 !
6 files changed, 112 insertions(+), 9 deletions(-)

 fix a few html error

utilities/animate.1.in | 2 1 + 1 - 0 !
utilities/compare.1.in | 2 1 + 1 - 0 !
utilities/composite.1.in | 2 1 + 1 - 0 !
utilities/conjure.1.in | 2 1 + 1 - 0 !
utilities/convert.1.in | 2 1 + 1 - 0 !
utilities/display.1.in | 2 1 + 1 - 0 !
utilities/identify.1.in | 2 1 + 1 - 0 !
utilities/import.1.in | 2 1 + 1 - 0 !
utilities/mogrify.1.in | 2 1 + 1 - 0 !
utilities/montage.1.in | 2 1 + 1 - 0 !
utilities/stream.1.in | 2 1 + 1 - 0 !
11 files changed, 11 insertions(+), 11 deletions(-)

 fix a typo in manpage

debian-bug: 953279

index.html | 6 3 + 3 - 0 !
www/ImageMagickObject.html | 2 1 + 1 - 0 !
www/advanced-unix-installation.html | 3 1 + 2 - 0 !
www/advanced-windows-installation.html | 2 1 + 1 - 0 !
www/animate.html | 2 1 + 1 - 0 !
www/api.html | 2 1 + 1 - 0 !
www/api/Image++.html | 2 1 + 1 - 0 !
www/api/animate.html | 2 1 + 1 - 0 !
www/api/annotate.html | 2 1 + 1 - 0 !
www/api/attribute.html | 2 1 + 1 - 0 !
www/api/blob.html | 2 1 + 1 - 0 !
www/api/cache-view.html | 2 1 + 1 - 0 !
www/api/cache.html | 2 1 + 1 - 0 !
www/api/channel.html | 2 1 + 1 - 0 !
www/api/cipher.html | 2 1 + 1 - 0 !
www/api/color.html | 2 1 + 1 - 0 !
www/api/colormap.html | 2 1 + 1 - 0 !
www/api/colorspace.html | 2 1 + 1 - 0 !
www/api/compare.html | 2 1 + 1 - 0 !
www/api/composite.html | 2 1 + 1 - 0 !
www/api/constitute.html | 2 1 + 1 - 0 !
www/api/decorate.html | 2 1 + 1 - 0 !
www/api/deprecate.html | 2 1 + 1 - 0 !
www/api/display.html | 2 1 + 1 - 0 !
www/api/distort.html | 2 1 + 1 - 0 !
www/api/draw.html | 2 1 + 1 - 0 !
www/api/drawing-wand.html | 2 1 + 1 - 0 !
www/api/effect.html | 2 1 + 1 - 0 !
www/api/enhance.html | 2 1 + 1 - 0 !
www/api/exception.html | 2 1 + 1 - 0 !
www/api/feature.html | 2 1 + 1 - 0 !
www/api/fourier.html | 2 1 + 1 - 0 !
www/api/fx.html | 2 1 + 1 - 0 !
www/api/histogram.html | 2 1 + 1 - 0 !
www/api/image-view.html | 2 1 + 1 - 0 !
www/api/image.html | 2 1 + 1 - 0 !
www/api/layer.html | 2 1 + 1 - 0 !
www/api/list.html | 2 1 + 1 - 0 !
www/api/magick++-classes.html | 2 1 + 1 - 0 !
www/api/magick-deprecate.html | 2 1 + 1 - 0 !
www/api/magick-image.html | 2 1 + 1 - 0 !
www/api/magick-property.html | 2 1 + 1 - 0 !
www/api/magick-wand.html | 2 1 + 1 - 0 !
www/api/magick.html | 2 1 + 1 - 0 !
www/api/memory.html | 2 1 + 1 - 0 !
www/api/mime.html | 2 1 + 1 - 0 !
www/api/module.html | 2 1 + 1 - 0 !
www/api/mogrify.html | 2 1 + 1 - 0 !
www/api/monitor.html | 2 1 + 1 - 0 !
www/api/montage.html | 2 1 + 1 - 0 !
www/api/morphology.html | 2 1 + 1 - 0 !
www/api/paint.html | 2 1 + 1 - 0 !
www/api/pixel-iterator.html | 2 1 + 1 - 0 !
www/api/pixel-wand.html | 2 1 + 1 - 0 !
www/api/profile.html | 2 1 + 1 - 0 !
www/api/property.html | 2 1 + 1 - 0 !
www/api/quantize.html | 2 1 + 1 - 0 !
www/api/registry.html | 2 1 + 1 - 0 !
www/api/resize.html | 2 1 + 1 - 0 !
www/api/resource.html | 2 1 + 1 - 0 !
www/api/segment.html | 2 1 + 1 - 0 !
www/api/shear.html | 2 1 + 1 - 0 !
www/api/signature.html | 2 1 + 1 - 0 !
www/api/statistic.html | 2 1 + 1 - 0 !
www/api/stream.html | 2 1 + 1 - 0 !
www/api/transform.html | 2 1 + 1 - 0 !
www/api/version.html | 2 1 + 1 - 0 !
www/api/wand-view.html | 2 1 + 1 - 0 !
www/architecture.html | 2 1 + 1 - 0 !
www/binary-releases.html | 2 1 + 1 - 0 !
www/changelog.html | 2 1 + 1 - 0 !
www/cipher.html | 2 1 + 1 - 0 !
www/color-management.html | 2 1 + 1 - 0 !
www/color.html | 2 1 + 1 - 0 !
www/command-line-options.html | 10 5 + 5 - 0 !
www/command-line-processing.html | 4 2 + 2 - 0 !
www/command-line-tools.html | 2 1 + 1 - 0 !
www/compare.html | 2 1 + 1 - 0 !
www/compose.html | 2 1 + 1 - 0 !
www/composite.html | 2 1 + 1 - 0 !
www/conjure.html | 2 1 + 1 - 0 !
www/connected-components.html | 2 1 + 1 - 0 !
www/contact.html | 2 1 + 1 - 0 !
www/convert.html | 2 1 + 1 - 0 !
www/defines.html | 34 17 + 17 - 0 !
www/develop.html | 2 1 + 1 - 0 !
www/display.html | 2 1 + 1 - 0 !
www/distribute-pixel-cache.html | 2 1 + 1 - 0 !
www/download.html | 6 3 + 3 - 0 !
www/escape.html | 3 2 + 1 - 0 !
www/examples.html | 2 1 + 1 - 0 !
www/exception.html | 2 1 + 1 - 0 !
www/export.html | 2 1 + 1 - 0 !
www/formats.html | 2 1 + 1 - 0 !
www/fx.html | 2 1 + 1 - 0 !
www/gradient.html | 2 1 + 1 - 0 !
www/high-dynamic-range.html | 2 1 + 1 - 0 !
www/history.html | 2 1 + 1 - 0 !
www/identify.html | 2 1 + 1 - 0 !
www/import.html | 2 1 + 1 - 0 !
www/index.html | 16 3 + 13 - 0 !
www/install-source.html | 2 1 + 1 - 0 !
www/jp2.html | 2 1 + 1 - 0 !
www/license.html | 5 3 + 2 - 0 !
www/links.html | 2 1 + 1 - 0 !
www/magick++.html | 2 1 + 1 - 0 !
www/magick-core.html | 2 1 + 1 - 0 !
www/magick-script.html | 2 1 + 1 - 0 !
www/magick-vector-graphics.html | 2 1 + 1 - 0 !
www/magick-wand.html | 2 1 + 1 - 0 !
www/magick.html | 2 1 + 1 - 0 !
www/miff.html | 2 1 + 1 - 0 !
www/mirror.html | 2 1 + 1 - 0 !
www/mogrify.html | 2 1 + 1 - 0 !
www/montage.html | 2 1 + 1 - 0 !
www/motion-picture.html | 2 1 + 1 - 0 !
www/news.html | 5 3 + 2 - 0 !
www/opencl.html | 2 1 + 1 - 0 !
www/openmp.html | 2 1 + 1 - 0 !
www/perl-magick.html | 2 1 + 1 - 0 !
www/porting.html | 2 1 + 1 - 0 !
www/quantize.html | 2 1 + 1 - 0 !
www/resources.html | 2 1 + 1 - 0 !
www/search.html | 2 1 + 1 - 0 !
www/security-policy.html | 2 1 + 1 - 0 !
www/sitemap.html | 10 5 + 5 - 0 !
www/stream.html | 2 1 + 1 - 0 !
www/support.html | 8 4 + 4 - 0 !
www/webp.html | 3 2 + 1 - 0 !
129 files changed, 169 insertions(+), 176 deletions(-)

 finalize fixing error in html

www/api/magick++-classes.html | 2 1 + 1 - 0 !
www/defines.html | 1 1 + 0 - 0 !
www/links.html | 2 1 + 1 - 0 !
3 files changed, 3 insertions(+), 2 deletions(-)

 fix error in new upstream html

magick/annotate.c | 9 9 + 0 - 0 !
1 file changed, 9 insertions(+)

 [patch] https://github.com/imagemagick/imagemagick6/issues/145

config/policy.xml | 7 7 + 0 - 0 !
1 file changed, 7 insertions(+)

 disable ghostscript handled formats based on -safer insecurity

Based on Tavis Ormandy's Recommendations
updated: 2019-11-11

magick/property.c | 20 0 + 20 - 0 !
wand/mogrify.c | 18 17 + 1 - 0 !
2 files changed, 17 insertions(+), 21 deletions(-)

 [patch] move `-set profile` handler to cli

coders/tiff.c | 10 5 + 5 - 0 !
1 file changed, 5 insertions(+), 5 deletions(-)

 cve-2021-3574: memory leak

Memory leak due to crafted tiff file

bug: https://github.com/ImageMagick/ImageMagick/issues/3540

magick/draw.c | 4 3 + 1 - 0 !
1 file changed, 3 insertions(+), 1 deletion(-)

 cve-2021-4219: dos

bug: https://github.com/ImageMagick/ImageMagick/issues/4626
bug-debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1023282

coders/jp2.c | 4 2 + 2 - 0 !
1 file changed, 2 insertions(+), 2 deletions(-)

 cve-2021-20241:

fix division by zero in WriteJP2Image() in coders/jp2.c

magick/resize.c | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 cve-2021-20243

bug: https://github.com/ImageMagick/ImageMagick/pull/3177

magick/visual-effects.c | 8 4 + 4 - 0 !
1 file changed, 4 insertions(+), 4 deletions(-)

 cve-2021-20244: uses the perceptiblereciprocal() to prevent the
 divide-by-zero from occurring (#3194)

A crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero

coders/webp.c | 3 2 + 1 - 0 !
1 file changed, 2 insertions(+), 1 deletion(-)

 cve-2021-20245 division by zero in writeanimatedwebpimage() in
 coders/webp.c

bug: https://github.com/ImageMagick/ImageMagick/issues/3176

magick/resample.c | 4 2 + 2 - 0 !
1 file changed, 2 insertions(+), 2 deletions(-)

 cve-2021-20246: division by zero in magickcore/resample.c

bug:https://github.com/ImageMagick/ImageMagick/issues/3195

magick/visual-effects.c | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 cve-2021-20309: division by zero in waveimage()

bug: https://github.com/ImageMagick/ImageMagick/issues/3296

magick/module.c | 10 5 + 5 - 0 !
magick/static.c | 8 4 + 4 - 0 !
2 files changed, 9 insertions(+), 9 deletions(-)

 [partial] cve-2021-39212: fixed incorrect check when module is used
 as the domain in policy.xml that would allow the use of a disabled module.

magick/static.c | 5 4 + 1 - 0 !
1 file changed, 4 insertions(+), 1 deletion(-)

 [partial] cve-2021-39212: added missing policy checks in
 RegisterStaticModules.

magick/module.c | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 [partial] cve-2021-39212: use allpolicyrights instead.

(cherry picked from commit b60e17133b982d28816386b83174c2bc06dd39bd)

magick/module.c | 2 1 + 1 - 0 !
magick/static.c | 8 6 + 2 - 0 !
2 files changed, 7 insertions(+), 3 deletions(-)

 cve-2021-39212: use the correct rights.

(cherry picked from commit 428e68597fa904d0bdc133d878e12acd7dc60fa3)

coders/dcm.c | 14 7 + 7 - 0 !
1 file changed, 7 insertions(+), 7 deletions(-)

 fix cve-2022-1114: heap use after free in relinquishdcminfo()

bug: https://github.com/ImageMagick/ImageMagick/issues/4947
bug-debian: https://bugs.debian.org/1013282

coders/cin.c | 2 2 + 0 - 0 !
1 file changed, 2 insertions(+)

 cve-2022-28463: buffer overflow in cin coder

bug-debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1013282
bug: https://github.com/ImageMagick/ImageMagick/issues/4988

coders/emf.c | 3 2 + 1 - 0 !
coders/psd.c | 5 3 + 2 - 0 !
magick/widget.c | 6 6 + 0 - 0 !
wand/animate.c | 5 4 + 1 - 0 !
wand/display.c | 5 4 + 1 - 0 !
5 files changed, 19 insertions(+), 5 deletions(-)

 cve-2022-32545: undefined behavior value outside char range

bug: https://github.com/ImageMagick/ImageMagick/pull/4963
bug-redhat: https://bugzilla.redhat.com/show_bug.cgi?id=2091811
bug-debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1016442

coders/pcl.c | 4 2 + 2 - 0 !
1 file changed, 2 insertions(+), 2 deletions(-)

 cve-2022-32546 outside the range of representable values of type
 'unsigned long' at coders/pcl.c,

bug: https://github.com/ImageMagick/ImageMagick/pull/4986
bug-debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1016442

magick/property.c | 6 4 + 2 - 0 !
1 file changed, 4 insertions(+), 2 deletions(-)

 fix cve-2022-32547: unaligned access in property

bug: https://github.com/ImageMagick/ImageMagick/pull/5034
bug-debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1016442

coders/tiff.c | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 [1/2] cve-2021-3610 eliminate heap buffer overflow vulnerability in
 TIFF coder

thanks to ZhangJiaxing (@r0fm1a) from Codesafe Team of Legendsec at Qi'anxin Group

bug: https://github.com/ImageMagick/ImageMagick6/issues/244

coders/tiff.c | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 [2/2] cve-2021-3610 eliminate heap buffer overflow vulnerability in
 TIFF coder

Thanks to ZhangJiaxing (@r0fm1a) from Codesafe Team of Legendsec at Qi'anxin Group

bug: https://github.com/ImageMagick/ImageMagick6/issues/244

coders/tiff.c | 9 7 + 2 - 0 !
1 file changed, 7 insertions(+), 2 deletions(-)

 heap-based buffer overflow in tiff coder (alert from hunter
 Mitchell)

coders/tiff.c | 4 2 + 2 - 0 !
1 file changed, 2 insertions(+), 2 deletions(-)

 heap-based buffer overflow in tiff coder (alert from hunter
 Mitchell)

coders/tiff.c | 7 1 + 6 - 0 !
1 file changed, 1 insertion(+), 6 deletions(-)

 heap-based buffer overflow in tiff coder (alert from hunter
 Mitchell)

bug: https://github.com/ImageMagick/ImageMagick6/issues/245

coders/tiff.c | 1 1 + 0 - 0 !
1 file changed, 1 insertion(+)

 fix a non initialized value passed to tiffgetfield()

bug-oss-fuzz: https://oss-fuzz.com/testcase-detail/6502669439598592
bug: https://github.com/ImageMagick/ImageMagick6/issues/246

coders/tiff.c | 16 7 + 9 - 0 !
1 file changed, 7 insertions(+), 9 deletions(-)

 initialize buffer before calling tiffgetfield()

bug-oss-fuzz: https://oss-fuzz.com/testcase-detail/6502669439598592
bug: https://github.com/ImageMagick/ImageMagick6/issues/246

coders/tiff.c | 5 5 + 0 - 0 !
1 file changed, 5 insertions(+)

 fix stack overflow when parsing malicious tiff image

(cherry picked from commit 85a370c79afeb45a97842b0959366af5236e9023)

coders/tiff.c | 44 33 + 11 - 0 !
1 file changed, 33 insertions(+), 11 deletions(-)

 early exit on exception

In case of malformed tiff image bail early

coders/tiff.c | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 fix buffer overrun in tiff coder

coders/tiff.c | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 fix buffer overrun in tiff coder

coders/tiff.c | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 fix buffer overrun in tiff coder

bug: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=42549

coders/tiff.c | 35 16 + 19 - 0 !
1 file changed, 16 insertions(+), 19 deletions(-)

 fix unintialised value

bug: https://github.com/ImageMagick/ImageMagick/issues/4830

coders/tiff.c | 2 2 + 0 - 0 !
1 file changed, 2 insertions(+)

 raise exception when image could not be read but no exception was
 raised.

Bail out in case of corrupted image

https://github.com/ImageMagick/ImageMagick6/commit/3e15c68efcb1e6383c93e7dfe38ba6c37e614d1b
(cherry picked from commit 3e15c68efcb1e6383c93e7dfe38ba6c37e614d1b)

coders/tiff.c | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 cve-2022-1115: heap based overflow with a specially crafted tiff
 image

bug: https://github.com/ImageMagick/ImageMagick/issues/4974

magick/constitute.c | 12 12 + 0 - 0 !
magick/draw.c | 55 26 + 29 - 0 !
magick/draw.h | 3 3 + 0 - 0 !
magick/image.c | 1 1 + 0 - 0 !
magick/image.h | 3 3 + 0 - 0 !
5 files changed, 45 insertions(+), 29 deletions(-)

 cve-2023-1289: recursion detection framework

magick/draw.c | 1 1 + 0 - 0 !
1 file changed, 1 insertion(+)

 cve-2023-1289 recursion detection

coders/tiff.c | 11 4 + 7 - 0 !
1 file changed, 4 insertions(+), 7 deletions(-)

 cve-2023-1906

A heap-based buffer overflow issue was discovered in ImageMagick's
ImportMultiSpectralQuantum() function in MagickCore/quantum-import.c.
An attacker could pass specially crafted file to convert, triggering
an out-of-bounds read error, allowing an application to crash, resulting in a denial of service.