[prev in list] [next in list] [prev in thread] [next in thread]
List: graphicsmagick-commit
Subject: [GM-commit] GraphicsMagick: Updated NEWS.txt with latest changes.
From: GraphicsMagick Commits <graphicsmagick-commit () lists ! sourceforge ! net>
Date: 2016-08-21 14:20:39
Message-ID: hg.416b8fb3574d.1471789239.2950750188400161634 () src ! simplesystems ! org
[Download RAW message or body]
changeset 416b8fb3574d in /hg/GraphicsMagick
details: http://hg.GraphicsMagick.org/hg/GraphicsMagick?cmd=changeset;node=416b8fb3574d
summary: Updated NEWS.txt with latest changes.
diffstat:
ChangeLog | 4 +++
NEWS.txt | 35 ++++++++++++++++++++++++++++-----
VisualMagick/installer/inc/version.isx | 4 +-
magick/version.h | 4 +-
www/Changelog.html | 6 +++++
www/NEWS.html | 26 ++++++++++++++++++++----
6 files changed, 64 insertions(+), 15 deletions(-)
diffs (190 lines):
diff -r d972c761b55d -r 416b8fb3574d ChangeLog
--- a/ChangeLog Sat Aug 20 18:58:54 2016 -0500
+++ b/ChangeLog Sun Aug 21 09:20:35 2016 -0500
@@ -1,3 +1,7 @@
+2016-08-21 Bob Friesenhahn <bfriesen@simple.dallas.tx.us>
+
+ * NEWS.txt: Updated with latest changes.
+
2016-08-20 Bob Friesenhahn <bfriesen@simple.dallas.tx.us>
* coders/rle.c (ReadRLEImage): Reject truncated/absurd Utah RLE
diff -r d972c761b55d -r 416b8fb3574d NEWS.txt
--- a/NEWS.txt Sat Aug 20 18:58:54 2016 -0500
+++ b/NEWS.txt Sun Aug 21 09:20:35 2016 -0500
@@ -6,7 +6,7 @@
GraphicsMagick News
===================
-This file was last updated on August 6, 2016
+This file was last updated on August 21, 2016
Please note that this file records news for the associated development
branch and that each development branch has its own NEWS file. See the
@@ -24,14 +24,22 @@
Security Fixes:
-* SVG/MVG: Fix another case of CVE-2016-2317 (heap buffer overflow) in
- the MVG rendering code (also impacts SVG).
-
* EscapeParenthesis(): I was notified by Gustavo Grieco of a heap
overflow in EscapeParenthesis() used in the text annotation code.
While not being able to reproduce the issue, the implementation of
this function is completely redone.
+* Utah RLE: Reject truncated/absurd files which caused huge memory
+ allocations and/or consumed huge CPU. Problem was reported by
+ Agostino Sarubbo based on testing with AFL.
+
+* SVG/MVG: Fix another case of CVE-2016-2317 (heap buffer overflow) in
+ the MVG rendering code (also impacts SVG).
+
+* TIFF: Fix heap buffer read overflow while copying sized TIFF
+ attributes. Problem was reported by Agostino Sarubbo based on
+ testing with AFL.
+
Bug fixes:
* GetToken(): Fix obscure bug (read beyond end of string buffer)
@@ -60,11 +68,22 @@
Feature improvements:
-* None
+* ElapsedTime(): Use clock_gettime() (when available with default
+ linkage) to obtain elapsed time.
+
+* DescribeImage(): Provide 6 digits of seconds precision in in elapsed
+ time output. Previously the resolution was rounded up to a full
+ second.
Windows Delegate Updates/Additions:
-* None
+* webp: Updated bundled libwebp to release 0.5.1.
+
+* libxml: Updated bundled libxml2 to release 2.9.4.
+
+* lcms: Updated bundled lcms2 to release 2.8.
+
+* png: Update bundled libpng to release 1.6.24.
Build Changes:
@@ -76,6 +95,10 @@
* SVG: Some SVG files may be rejected due to absurdly large gradient
requests.
+* The 'identify' and 'info' functionality only shows the pixel read
+ rate if image was not read in 'ping' mode. Provide 6 digits of
+ seconds precision in in elapsed time output.
+
1.3.24 (May 30, 2016)
==========================
diff -r d972c761b55d -r 416b8fb3574d VisualMagick/installer/inc/version.isx
--- a/VisualMagick/installer/inc/version.isx Sat Aug 20 18:58:54 2016 -0500
+++ b/VisualMagick/installer/inc/version.isx Sun Aug 21 09:20:35 2016 -0500
@@ -10,5 +10,5 @@
#define public MagickPackageName "GraphicsMagick"
#define public MagickPackageVersion "1.4"
-#define public MagickPackageVersionAddendum ".020160820"
-#define public MagickPackageReleaseDate "snapshot-20160820"
+#define public MagickPackageVersionAddendum ".020160821"
+#define public MagickPackageReleaseDate "snapshot-20160821"
diff -r d972c761b55d -r 416b8fb3574d magick/version.h
--- a/magick/version.h Sat Aug 20 18:58:54 2016 -0500
+++ b/magick/version.h Sun Aug 21 09:20:35 2016 -0500
@@ -38,8 +38,8 @@
#define MagickLibVersion 0x181500
#define MagickLibVersionText "1.4"
#define MagickLibVersionNumber 18,15,0
-#define MagickChangeDate "20160820"
-#define MagickReleaseDate "snapshot-20160820"
+#define MagickChangeDate "20160821"
+#define MagickReleaseDate "snapshot-20160821"
/*
The MagickLibInterfaceNewest and MagickLibInterfaceOldest defines
diff -r d972c761b55d -r 416b8fb3574d www/Changelog.html
--- a/www/Changelog.html Sat Aug 20 18:58:54 2016 -0500
+++ b/www/Changelog.html Sun Aug 21 09:20:35 2016 -0500
@@ -35,6 +35,12 @@
<div class="document">
+<p>2016-08-21 Bob Friesenhahn <<a class="reference external" \
href="mailto:bfriesen%40simple.dallas.tx.us">bfriesen<span> \
4;</span>simple<span>.</span>dallas<span>.</span>tx<span>.</span>us</a>></p>
+<blockquote>
+<ul class="simple">
+<li>NEWS.txt: Updated with latest changes.</li>
+</ul>
+</blockquote>
<p>2016-08-20 Bob Friesenhahn <<a class="reference external" \
href="mailto:bfriesen%40simple.dallas.tx.us">bfriesen<span> \
4;</span>simple<span>.</span>dallas<span>.</span>tx<span>.</span>us</a>></p>
<blockquote>
<ul class="simple">
diff -r d972c761b55d -r 416b8fb3574d www/NEWS.html
--- a/www/NEWS.html Sat Aug 20 18:58:54 2016 -0500
+++ b/www/NEWS.html Sun Aug 21 09:20:35 2016 -0500
@@ -38,7 +38,7 @@
<!-- -*- mode: rst -*- -->
<!-- This text is in reStucturedText format, so it may look a bit odd. -->
<!-- See http://docutils.sourceforge.net/rst.html for details. -->
-<p>This file was last updated on August 6, 2016</p>
+<p>This file was last updated on August 21, 2016</p>
<p>Please note that this file records news for the associated development
branch and that each development branch has its own NEWS file. See the
ChangeLog file for full details.</p>
@@ -83,12 +83,18 @@
</ul>
<p>Security Fixes:</p>
<ul class="simple">
-<li>SVG/MVG: Fix another case of CVE-2016-2317 (heap buffer overflow) in
-the MVG rendering code (also impacts SVG).</li>
<li>EscapeParenthesis(): I was notified by Gustavo Grieco of a heap
overflow in EscapeParenthesis() used in the text annotation code.
While not being able to reproduce the issue, the implementation of
this function is completely redone.</li>
+<li>Utah RLE: Reject truncated/absurd files which caused huge memory
+allocations and/or consumed huge CPU. Problem was reported by
+Agostino Sarubbo based on testing with AFL.</li>
+<li>SVG/MVG: Fix another case of CVE-2016-2317 (heap buffer overflow) in
+the MVG rendering code (also impacts SVG).</li>
+<li>TIFF: Fix heap buffer read overflow while copying sized TIFF
+attributes. Problem was reported by Agostino Sarubbo based on
+testing with AFL.</li>
</ul>
<p>Bug fixes:</p>
<ul class="simple">
@@ -115,11 +121,18 @@
</ul>
<p>Feature improvements:</p>
<ul class="simple">
-<li>None</li>
+<li>ElapsedTime(): Use clock_gettime() (when available with default
+linkage) to obtain elapsed time.</li>
+<li>DescribeImage(): Provide 6 digits of seconds precision in in elapsed
+time output. Previously the resolution was rounded up to a full
+second.</li>
</ul>
<p>Windows Delegate Updates/Additions:</p>
<ul class="simple">
-<li>None</li>
+<li>webp: Updated bundled libwebp to release 0.5.1.</li>
+<li>libxml: Updated bundled libxml2 to release 2.9.4.</li>
+<li>lcms: Updated bundled lcms2 to release 2.8.</li>
+<li>png: Update bundled libpng to release 1.6.24.</li>
</ul>
<p>Build Changes:</p>
<ul class="simple">
@@ -130,6 +143,9 @@
<ul class="simple">
<li>SVG: Some SVG files may be rejected due to absurdly large gradient
requests.</li>
+<li>The 'identify' and 'info' functionality only shows the pixel read
+rate if image was not read in 'ping' mode. Provide 6 digits of
+seconds precision in in elapsed time output.</li>
</ul>
</div>
<div class="section" id="may-30-2016">
------------------------------------------------------------------------------
_______________________________________________
Graphicsmagick-commit mailing list
Graphicsmagick-commit@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/graphicsmagick-commit
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic