Commit Graph

127 Commits

Author SHA1 Message Date
Vicente Olivert Riera
68e8c3b5a6 imagemagick: bump version to 7.0.4-3 (security)
Fixes CVE-2016-8707 (Fix possible buffer overflow when writing
compressed TIFFS). This CVE fix is included since 7.0.3-9:
  fde5f55af9

Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2017-01-09 16:25:15 +01:00
Peter Korsgaard
cbe1f288d4 imagemagick: security bump to 7.0.3-8
Fixes CVE-2016-9556 (Heap buffer overflow in IsPixelGray).

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2016-11-27 22:23:51 +01:00
Vicente Olivert Riera
12c2c80aa3 imagemagick: bump version to 7.0.3-7 (security)
oss-security reference:
  http://www.openwall.com/lists/oss-security/2016/11/13/1

Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2016-11-16 13:05:28 +01:00
Peter Korsgaard
521aaf5554 imagemagick: bump version to 7.0.3-4
7.0.3-3 is no longer available upstream and has instead been replaced by -4,
so use that instead.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2016-10-13 10:52:37 +02:00
Gustavo Zacarias
618fa6da21 imagemagick: security bump to version 7.0.3-3
Fixes:
memory allocate failure in AcquireQuantumPixels (quantum.c)
heap-based buffer overflow in IsPixelMonochrome (pixel-accessor.h)

No CVEs assigned yet.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2016-10-13 08:05:13 +02:00
Peter Korsgaard
2567f6f2f3 imagemagick: security bump to 7.0.2-9
Fixes a number of buffer overflows / use-after-free issues:
http://git.imagemagick.org/repos/ImageMagick/blob/master/ChangeLog

  * Prevent buffer overflow in BMP & SGI coders (bug report from
    pwchen&rayzhong of tencent).
  * Prevent buffer overflow and other problems in SIXEL, PDB, MAP, TIFF and
    CALS coders (bug report from Donghai Zhu).
  * Prevent buffer overflow (bug report from Max Thrane).
  * Prevent memory use after free (reference
    https://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=30245).

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2016-08-26 15:37:17 +02:00
Jerzy Grzegorek
ba865a4c92 package/imagemagick: bump to version 7.0.2-6
Signed-off-by: Jerzy Grzegorek <jerzy.grzegorek@trzebnica.net>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2016-08-03 23:28:12 +02:00
Gustavo Zacarias
d70e2fc28e imagemagick: bump to version 7.0.2-5
Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2016-07-23 15:06:25 +02:00
Vicente Olivert Riera
2c18799b84 imagemagick: bump version to 7.0.2-4
Option --without-jp2 removed as it doesn't exist anymore.

Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2016-07-14 12:33:52 +02:00
Robert Sohn
9834089375 imagemagick: explicitly specify ghostscript font directory
It appears that Imagemagick needs to be configured with
 --with-gs-font-dir=/usr/share/fonts/gs else it will not find
the ghostscript fonts and /etc/ImageMagick-6/type-ghostscript.xml
will contain the wrong font paths. You end up with messages like:
Magick: unable to read font `(null)' @ error/annotate.c/RenderFreetype/1153
They are non-fatal but could get annoying fast if you are using 'convert'
on a lot of files.

Without patch we end up with (depending on what is available on the host):

  Font Configuration:
  Apple fonts       --with-apple-font-dir=default
  Dejavu fonts      --with-dejavu-font-dir=default      none
  Ghostscript fonts --with-gs-font-dir=default  /usr/share/fonts/type1/gsfonts/
  Windows fonts     --with-windows-font-dir=default     none

And with the patch:

  Font Configuration:
  Apple fonts       --with-apple-font-dir=default
  Dejavu fonts      --with-dejavu-font-dir=default      none
  Ghostscript fonts --with-gs-font-dir=/usr/share/fonts/gs      /usr/share/fonts/gs/
  Windows fonts     --with-windows-font-dir=default     none

[Peter: reworked/extended commit message]
Signed-off-by: Robert Sohn <grepper@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2016-07-04 17:50:43 +02:00
Vicente Olivert Riera
cf5e7bc63b imagemagick: bump version to 7.0.2-1
Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2016-06-24 17:12:25 +02:00
Gustavo Zacarias
fa693c37dc imagemagick: add explicit lzma (xz) support
Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2016-06-15 23:11:54 +02:00
Gustavo Zacarias
fa23075573 imagemagick: add explicit pango support
Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2016-06-15 23:11:49 +02:00
Gustavo Zacarias
de81d2e541 imagemagick: bump to version 7.0.2-0
Add new disables for libraries that aren't supported in buildroot and
sort them for ease of maintenance.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2016-06-15 23:11:44 +02:00
Bernd Kuhls
61dd71243d package/imagemagick: bump version to 6.9.4-6
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2016-06-01 21:20:56 +02:00
Gustavo Zacarias
72b93bb676 imagemagick: security bump to version 6.9.4-1
Fixes:
Fix GetNextToken() off by one error.
Check for buffer overflow in magick/draw.c/DrawStrokePolygon().
Remove support for internal ephemeral coder.

These are all related to the recent ImageTragick bundle that were
partially fixed in 6.9.3-10 as well.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2016-05-10 21:44:50 +02:00
Jerzy Grzegorek
1f2744bfa9 imagemagick: bump to version 6.9.3-10
Signed-off-by: Jerzy Grzegorek <jerzy.grzegorek@trzebnica.net>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2016-05-07 14:15:49 +02:00
Jerzy Grzegorek
b2090e18a0 imagemagick: bump to version 6.9.3-7
Signed-off-by: Jerzy Grzegorek <jerzy.grzegorek@trzebnica.net>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2016-03-24 22:31:45 +01:00
Bernd Kuhls
9d12f12846 package/imagemagick: add optional support for webp
When webp was compiled before, imagemagick will use it as optional
dependency:

$ output/host/usr/bin/x86_64-linux-readelf -a output/target/usr/bin/stream | grep NEEDED
 0x0000000000000001 (NEEDED)             Shared library: [libMagickCore-6.Q16.so.2]
 0x0000000000000001 (NEEDED)             Shared library: [libMagickWand-6.Q16.so.2]
 0x0000000000000001 (NEEDED)             Shared library: [libjpeg.so.8]
 0x0000000000000001 (NEEDED)             Shared library: [libwebp.so.5]
[...]

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2016-02-21 21:30:57 +01:00
Bernd Kuhls
6fa25a8fb7 package/imagemagick: add optional support for lcms2
When lcms2 was compiled before, imagemagick will use it as optional
dependency:

$ output/host/usr/bin/x86_64-linux-readelf -a output/target/usr/bin/identify | grep NEEDED
 0x0000000000000001 (NEEDED)             Shared library: [libMagickCore-6.Q16.so.2]
 0x0000000000000001 (NEEDED)             Shared library: [libMagickWand-6.Q16.so.2]
 0x0000000000000001 (NEEDED)             Shared library: [liblcms2.so.2]
[...]

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2016-02-21 14:45:22 +01:00
Ricardo Martincoski
19d9146823 imagemagick: bump version to 6.9.3-3
Signed-off-by: Ricardo Martincoski <ricardo.martincoski@gmail.com>
Cc: Bernd Kuhls <bernd.kuhls@t-online.de>
Cc: Jerzy Grzegorek <jerzy.grzegorek@trzebnica.net>
Reviewed-by: Jerzy Grzegorek <jerzy.grzegorek@trzebnica.net>
Tested-by: Jerzy Grzegorek <jerzy.grzegorek@trzebnica.net>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2016-02-08 12:13:02 +01:00
Bernd Kuhls
9bea9d6c52 package/imagemagick: bump version to 6.9.3-2
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2016-01-28 22:31:31 +01:00
Jerzy Grzegorek
4c09a15aa8 imagemagick: bump to version 6.9.2-10
Signed-off-by: Jerzy Grzegorek <jerzy.grzegorek@trzebnica.net>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2015-12-21 23:05:29 +01:00
Vicente Olivert Riera
b768ed4d06 imagemagick: bump version to 6.9.2-7
Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2015-11-30 17:04:48 +01:00
Baruch Siach
5a55506210 imagemagick: use download location as hash source
Since commit 12a6c5b12c (imagemagick: use official download site,
2015-02-17) we use the official ImageMagic size. Use it also as hash source.
That's the conversion we use in all other packages when upstream provides
hashes.

Cc: Fabio Porcedda <Fabio.Porcedda@gmail.com>
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2015-11-03 15:44:35 +01:00
Jerzy Grzegorek
4369e9a5c4 imagemagick: bump to version 6.9.2-5
Signed-off-by: Jerzy Grzegorek <jerzy.grzegorek@trzebnica.net>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2015-11-02 15:41:51 +01:00
Bernd Kuhls
24e714df89 package/imagemagick: bump version to 6.9.2-4
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2015-10-12 18:00:11 +02:00
Gustavo Zacarias
2871e7ea78 imagemagick: bump to version 6.9.2-3
Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2015-10-02 16:32:35 +02:00
Jerzy Grzegorek
f1ea43c60f imagemagick: bump to version 6.9.1-8
Signed-off-by: Jerzy Grzegorek <jerzy.grzegorek@trzebnica.net>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2015-07-18 11:18:19 +02:00
Jerzy Grzegorek
82da9aa830 imagemagick: bump to version 6.9.1-7
Signed-off-by: Jerzy Grzegorek <jerzy.grzegorek@trzebnica.net>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2015-07-06 11:42:56 +02:00
Gustavo Zacarias
02e217d672 imagemagick: bump to version 6.9.1-6
Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2015-06-22 22:14:14 +02:00
Jerzy Grzegorek
3302263870 imagemagick: bump to version 6.9.1-4
Signed-off-by: Jerzy Grzegorek <jerzy.grzegorek@trzebnica.net>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2015-06-01 23:58:27 +02:00
Jerzy Grzegorek
ba4d7d3779 imagemagick: bump to version 6.9.1-1
Also update hash file.

Signed-off-by: Jerzy Grzegorek <jerzy.grzegorek@trzebnica.net>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2015-04-14 10:06:53 +02:00
Jerzy Grzegorek
1ec2187edf imagemagick: bump to version 6.9.1-0
Also update hash file.

Signed-off-by: Jerzy Grzegorek <jerzy.grzegorek@trzebnica.net>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2015-04-02 10:15:27 +02:00
Gustavo Zacarias
f4716f79a0 packages: remove (non-)lfs dependencies and tweaks
Now that largefile is mandatory removes package dependencies and
conditionals.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2015-04-01 22:47:22 +02:00
Jerzy Grzegorek
b93fae4ade imagemagick: bump to version 6.9.0-10
Also update hash file.

Signed-off-by: Jerzy Grzegorek <jerzy.grzegorek@trzebnica.net>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2015-03-08 22:23:53 +01:00
Jerzy Grzegorek
4f6edcc792 imagemagick: bump to version 6.9.0-9
Signed-off-by: Jerzy Grzegorek <jerzy.grzegorek@trzebnica.net>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2015-03-02 23:46:28 +01:00
Peter Korsgaard
7403ea730d Merge branch 'next'
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2015-03-02 23:26:20 +01:00
Fabio Porcedda
d3a4f9c6c3 imagemagick: bump to version 6.9.0-7
Signed-off-by: Fabio Porcedda <fabio.porcedda@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2015-02-22 22:23:29 +01:00
Fabio Porcedda
383fa78e3c imagemagick: bump to version 6.9.0-6
Signed-off-by: Fabio Porcedda <Fabio.Porcedda@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2015-02-19 21:36:37 +01:00
Fabio Porcedda
12a6c5b12c imagemagick: use official download site
Don't use anymore the alternate download site beacause it does not
conatins anymore older versions, instead use the official download site
because now it contains even the older versions.

Signed-off-by: Fabio Porcedda <Fabio.Porcedda@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2015-02-17 14:20:51 +01:00
Jerzy Grzegorek
f1927896c2 imagemagick: bump to version 6.9.0-5
Signed-off-by: Jerzy Grzegorek <jerzy.grzegorek@trzebnica.net>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2015-02-14 08:46:20 +01:00
Gustavo Zacarias
03c7f97454 imagemagick: bump to version 6.9.0-4
Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2015-01-20 00:31:29 +01:00
Gustavo Zacarias
8257256c65 imagemagick: security bump to version 6.9.0-3
Fixes many of the reported security audit vulnerabilities:
http://www.openwall.com/lists/oss-security/2014/12/24/1

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2015-01-06 21:12:33 +01:00
Thomas Petazzoni
0319d62762 imagemagick: needs thread support
The no thread support in imagemagick is broken since the last
bump. Since supporting non-threaded configurations is not that
important, let's simply make imagemagick depend on thread support.

Fixes:

  http://autobuild.buildroot.org/results/4e6/4e6d0bbe120579ab4a54960ee794e8cf64b99e80/

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2015-01-01 17:36:23 +01:00
Jerzy Grzegorek
fbd8c5dab7 imagemagick: bump to version 6.9.0-2
[Peter: use correct sha256sum]
Signed-off-by: Jerzy Grzegorek <jerzy.grzegorek@trzebnica.net>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2014-12-30 11:13:40 +01:00
Jerzy Grzegorek
38f09d6873 package: indentation cleanup
Signed-off-by: Jerzy Grzegorek <jerzy.grzegorek@trzebnica.net>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2014-12-24 11:41:05 +01:00
Vicente Olivert Riera
bcb083c2ea imagemagick: bump version to 6.9.0-0
- Bump version to 6.9.0-0
- Update the hash value

Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2014-11-18 13:38:38 +01:00
Gustavo Zacarias
36531f3549 imagemagick: bump to version 6.8.9-9
Add hash file.
And drop autoreconf/patch, it's is finally upstream.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2014-10-27 19:31:43 +01:00
Thomas De Schampheleire
aaffd209fa packages: rename FOO_CONF_OPT into FOO_CONF_OPTS
To be consistent with the recent change of FOO_MAKE_OPT into FOO_MAKE_OPTS,
make the same change for FOO_CONF_OPT.

Sed command used:
   find * -type f | xargs sed -i 's#_CONF_OPT\>#&S#g'

Signed-off-by: Thomas De Schampheleire <thomas.de.schampheleire@gmail.com>
Reviewed-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2014-10-04 18:54:16 +02:00