Report forwarded
to debian-bugs-dist@lists.debian.org, secure-testing-team@lists.alioth.debian.org, ImageMagick Packaging Team <pkg-gmagick-im-team@lists.alioth.debian.org>: Bug#857426; Package src:imagemagick.
(Fri, 10 Mar 2017 23:06:04 GMT) (full text, mbox, link).
Acknowledgement sent
to Bastien ROUCARIES <roucaries.bastien@gmail.com>:
New Bug report received and forwarded. Copy sent to secure-testing-team@lists.alioth.debian.org, ImageMagick Packaging Team <pkg-gmagick-im-team@lists.alioth.debian.org>.
(Fri, 10 Mar 2017 23:06:04 GMT) (full text, mbox, link).
To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Fwd: [Bug 1671630] [NEW] Memleak in IsOptionMember
Date: Sat, 11 Mar 2017 00:01:28 +0100
Package: src:imagemagick
Version: 8:6.7.7.10-5
Severity: serious
Tags: security
X-Debbugs-CC: secure-testing-team@lists.alioth.debian.org
control: found -1 8:6.6.0.4-3
Does not affect sid/jessie
---------- Forwarded message ----------
From: Stefan Pöschel <1671630@bugs.launchpad.net>
Date: Thu, Mar 9, 2017 at 10:21 PM
Subject: [Bug 1671630] [NEW] Memleak in IsOptionMember
To: roucaries.bastien+bugs@gmail.com
Public bug reported:
The ImageMagick version shipped with Ubuntu 16.04 (version
8:6.8.9.9-7ubuntu5.5) is affected by a memory leak. This has been fixed
in the following commit:
http://git.imagemagick.org/repos/ImageMagick/commit/6790815c75bdea0357df5564345847856e995d6b
So I request this fix to be backported to 16.04 (and other affect
version, if applicable; 14.04 is not affected).
The tool ODR-PadEnc which I maintain is affected by the bug:
https://github.com/Opendigitalradio/ODR-PadEnc/issues/2
Here one of the outputs that Valgrind procudes for each invokation - in
this case, I used 14.04 with
http://archive.ubuntu.com/ubuntu/pool/main/i/imagemagick/imagemagick_6.8.9.9.orig.tar.xz
as I have 16.04 only running in a VM. The patches within
http://archive.ubuntu.com/ubuntu/pool/main/i/imagemagick/imagemagick_6.8.9.9-7ubuntu5.5.debian.tar.xz
do NOT address this bug.
==1961== 455,322 bytes in 111 blocks are definitely lost in loss
record 1,761 of 1,762
==1961== at 0x4C2AB80: malloc (in
/usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
==1961== by 0x5E2DB3E: AcquireString (string.c:132)
==1961== by 0x5E2FC10: StringToArgv (string.c:2196)
==1961== by 0x5DC46F7: IsOptionMember (option.c:2278)
==1961== by 0x5F3F789: WritePNGImage (png.c:11996)
==1961== by 0x5D12B11: WriteImage (constitute.c:1184)
==1961== by 0x5CDE340: ImageToBlob (blob.c:1607)
==1961== by 0x40D7A5: SLSManager::encodeFile(std::string const&,
int, bool) (sls.cpp:392)
==1961== by 0x4038B1: main (odr-padenc.cpp:324)
** Affects: imagemagick (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are subscribed to
imagemagick in Ubuntu.
https://bugs.launchpad.net/bugs/1671630
Title:
Memleak in IsOptionMember
Status in imagemagick package in Ubuntu:
New
Bug description:
The ImageMagick version shipped with Ubuntu 16.04 (version
8:6.8.9.9-7ubuntu5.5) is affected by a memory leak. This has been
fixed in the following commit:
http://git.imagemagick.org/repos/ImageMagick/commit/6790815c75bdea0357df5564345847856e995d6b
So I request this fix to be backported to 16.04 (and other affect
version, if applicable; 14.04 is not affected).
The tool ODR-PadEnc which I maintain is affected by the bug:
https://github.com/Opendigitalradio/ODR-PadEnc/issues/2
Here one of the outputs that Valgrind procudes for each invokation -
in this case, I used 14.04 with
http://archive.ubuntu.com/ubuntu/pool/main/i/imagemagick/imagemagick_6.8.9.9.orig.tar.xz
as I have 16.04 only running in a VM. The patches within
http://archive.ubuntu.com/ubuntu/pool/main/i/imagemagick/imagemagick_6.8.9.9-7ubuntu5.5.debian.tar.xz
do NOT address this bug.
==1961== 455,322 bytes in 111 blocks are definitely lost in loss
record 1,761 of 1,762
==1961== at 0x4C2AB80: malloc (in
/usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
==1961== by 0x5E2DB3E: AcquireString (string.c:132)
==1961== by 0x5E2FC10: StringToArgv (string.c:2196)
==1961== by 0x5DC46F7: IsOptionMember (option.c:2278)
==1961== by 0x5F3F789: WritePNGImage (png.c:11996)
==1961== by 0x5D12B11: WriteImage (constitute.c:1184)
==1961== by 0x5CDE340: ImageToBlob (blob.c:1607)
==1961== by 0x40D7A5: SLSManager::encodeFile(std::string const&,
int, bool) (sls.cpp:392)
==1961== by 0x4038B1: main (odr-padenc.cpp:324)
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/imagemagick/+bug/1671630/+subscriptions
Marked as found in versions imagemagick/8:6.6.0.4-3.
Request was from Bastien ROUCARIES <roucaries.bastien@gmail.com>
to submit@bugs.debian.org.
(Fri, 10 Mar 2017 23:06:04 GMT) (full text, mbox, link).
Changed Bug title to '[Bug 1671630] Memory leak in IsOptionMember function' from 'Fwd: [Bug 1671630] [NEW] Memleak in IsOptionMember'.
Request was from John Paul Adrian Glaubitz <glaubitz@physik.fu-berlin.de>
to control@bugs.debian.org.
(Sat, 11 Mar 2017 08:39:04 GMT) (full text, mbox, link).
Reply sent
to Bastien ROUCARIES <roucaries.bastien@gmail.com>:
You have taken responsibility.
(Sat, 11 Mar 2017 15:18:03 GMT) (full text, mbox, link).
Notification sent
to Bastien ROUCARIES <roucaries.bastien@gmail.com>:
Bug acknowledged by developer.
(Sat, 11 Mar 2017 15:18:04 GMT) (full text, mbox, link).
Marked as fixed in versions imagemagick/8:6.8.9.9-5+deb8u8.
Request was from Salvatore Bonaccorso <carnil@debian.org>
to control@bugs.debian.org.
(Tue, 14 Mar 2017 05:36:03 GMT) (full text, mbox, link).
Information forwarded
to debian-bugs-dist@lists.debian.org, ImageMagick Packaging Team <pkg-gmagick-im-team@lists.alioth.debian.org>: Bug#857426; Package src:imagemagick.
(Tue, 14 Mar 2017 06:27:03 GMT) (full text, mbox, link).
Acknowledgement sent
to Salvatore Bonaccorso <carnil@debian.org>:
Extra info received and forwarded to list. Copy sent to ImageMagick Packaging Team <pkg-gmagick-im-team@lists.alioth.debian.org>.
(Tue, 14 Mar 2017 06:27:03 GMT) (full text, mbox, link).
Subject: Re: Bug#857426 closed by Bastien ROUCARIES
<roucaries.bastien@gmail.com> (does not affect sid,)
Date: Tue, 14 Mar 2017 07:23:25 +0100
Hello Bastien,
On Sat, Mar 11, 2017 at 03:18:04PM +0000, Debian Bug Tracking System wrote:
> This is an automatic notification regarding your Bug report
> which was filed against the src:imagemagick package:
>
> #857426: [Bug 1671630] Memory leak in IsOptionMember function
>
> It has been closed by Bastien ROUCARIES <roucaries.bastien@gmail.com>.
>
> Their explanation is attached below along with your original report.
> If this explanation is unsatisfactory and you have not received a
> better one in a separate message then please contact Bastien ROUCARIES <roucaries.bastien@gmail.com> by
> replying to this email.
>
>
> --
> 857426: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857426
> Debian Bug Tracking System
> Contact owner@bugs.debian.org with problems
> Date: Sat, 11 Mar 2017 16:15:15 +0100
> From: Bastien ROUCARIES <roucaries.bastien@gmail.com>
> To: 857426-done@bugs.debian.org
> Subject: does not affect sid,
> Message-ID: <CAE2SPAYRbFdaiCkVS+ObYmXXGO0=HMG5cw2vJMi9LE4jgp8qXw@mail.gmail.com>
>
> version: 8:6.9.7.4+dfsg-2
Hmm, I do not see that change from 8:6.9.7.4+dfsg-1 to
8:6.9.7.4+dfsg-2. Are you sure that is the fixing version and not
already done somewhere earlier?
Regards,
Salvatore
Information forwarded
to debian-bugs-dist@lists.debian.org, ImageMagick Packaging Team <pkg-gmagick-im-team@lists.alioth.debian.org>: Bug#857426; Package src:imagemagick.
(Tue, 14 Mar 2017 06:36:06 GMT) (full text, mbox, link).
Acknowledgement sent
to Salvatore Bonaccorso <carnil@debian.org>:
Extra info received and forwarded to list. Copy sent to ImageMagick Packaging Team <pkg-gmagick-im-team@lists.alioth.debian.org>.
(Tue, 14 Mar 2017 06:36:06 GMT) (full text, mbox, link).
Subject: Re: Bug#857426: closed by Bastien ROUCARIES
<roucaries.bastien@gmail.com> (does not affect sid,)
Date: Tue, 14 Mar 2017 07:34:16 +0100
Hi,
On Tue, Mar 14, 2017 at 07:23:25AM +0100, Salvatore Bonaccorso wrote:
> Hello Bastien,
>
> On Sat, Mar 11, 2017 at 03:18:04PM +0000, Debian Bug Tracking System wrote:
> > This is an automatic notification regarding your Bug report
> > which was filed against the src:imagemagick package:
> >
> > #857426: [Bug 1671630] Memory leak in IsOptionMember function
> >
> > It has been closed by Bastien ROUCARIES <roucaries.bastien@gmail.com>.
> >
> > Their explanation is attached below along with your original report.
> > If this explanation is unsatisfactory and you have not received a
> > better one in a separate message then please contact Bastien ROUCARIES <roucaries.bastien@gmail.com> by
> > replying to this email.
> >
> >
> > --
> > 857426: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857426
> > Debian Bug Tracking System
> > Contact owner@bugs.debian.org with problems
>
> > Date: Sat, 11 Mar 2017 16:15:15 +0100
> > From: Bastien ROUCARIES <roucaries.bastien@gmail.com>
> > To: 857426-done@bugs.debian.org
> > Subject: does not affect sid,
> > Message-ID: <CAE2SPAYRbFdaiCkVS+ObYmXXGO0=HMG5cw2vJMi9LE4jgp8qXw@mail.gmail.com>
> >
> > version: 8:6.9.7.4+dfsg-2
>
> Hmm, I do not see that change from 8:6.9.7.4+dfsg-1 to
> 8:6.9.7.4+dfsg-2. Are you sure that is the fixing version and not
> already done somewhere earlier?
Okay, the first version uploaded to unstable containing the fix is
probably 8:6.9.6.2+dfsg-2.
Regards,
Salvatore
Marked as fixed in versions imagemagick/8:6.9.6.2+dfsg-2.
Request was from Salvatore Bonaccorso <carnil@debian.org>
to control@bugs.debian.org.
(Tue, 14 Mar 2017 06:36:08 GMT) (full text, mbox, link).
Marked as fixed in versions imagemagick/8:6.9.2.10+dfsg-1.
Request was from Salvatore Bonaccorso <carnil@debian.org>
to control@bugs.debian.org.
(Tue, 14 Mar 2017 06:36:10 GMT) (full text, mbox, link).
Information forwarded
to debian-bugs-dist@lists.debian.org, ImageMagick Packaging Team <pkg-gmagick-im-team@lists.alioth.debian.org>: Bug#857426; Package src:imagemagick.
(Tue, 14 Mar 2017 10:27:03 GMT) (full text, mbox, link).
Acknowledgement sent
to Bastien ROUCARIES <roucaries.bastien@gmail.com>:
Extra info received and forwarded to list. Copy sent to ImageMagick Packaging Team <pkg-gmagick-im-team@lists.alioth.debian.org>.
(Tue, 14 Mar 2017 10:27:03 GMT) (full text, mbox, link).
To: Salvatore Bonaccorso <carnil@debian.org>, 857426@bugs.debian.org
Subject: Re: [Pkg-gmagick-im-team] Bug#857426: closed by Bastien ROUCARIES
<roucaries.bastien@gmail.com> (does not affect sid, )
Date: Tue, 14 Mar 2017 11:24:41 +0100
BTW I will open a CVE
Moreover could you check if CVE-2016-10068 is fixed ? According to
changelog it is and I could not apply patch (already applied)
On Tue, Mar 14, 2017 at 7:23 AM, Salvatore Bonaccorso <carnil@debian.org> wrote:
> Hello Bastien,
>
> On Sat, Mar 11, 2017 at 03:18:04PM +0000, Debian Bug Tracking System wrote:
>> This is an automatic notification regarding your Bug report
>> which was filed against the src:imagemagick package:
>>
>> #857426: [Bug 1671630] Memory leak in IsOptionMember function
>>
>> It has been closed by Bastien ROUCARIES <roucaries.bastien@gmail.com>.
>>
>> Their explanation is attached below along with your original report.
>> If this explanation is unsatisfactory and you have not received a
>> better one in a separate message then please contact Bastien ROUCARIES <roucaries.bastien@gmail.com> by
>> replying to this email.
>>
>>
>> --
>> 857426: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857426
>> Debian Bug Tracking System
>> Contact owner@bugs.debian.org with problems
>
>> Date: Sat, 11 Mar 2017 16:15:15 +0100
>> From: Bastien ROUCARIES <roucaries.bastien@gmail.com>
>> To: 857426-done@bugs.debian.org
>> Subject: does not affect sid,
>> Message-ID: <CAE2SPAYRbFdaiCkVS+ObYmXXGO0=HMG5cw2vJMi9LE4jgp8qXw@mail.gmail.com>
>>
>> version: 8:6.9.7.4+dfsg-2
>
> Hmm, I do not see that change from 8:6.9.7.4+dfsg-1 to
> 8:6.9.7.4+dfsg-2. Are you sure that is the fixing version and not
> already done somewhere earlier?
>
> Regards,
> Salvatore
>
> _______________________________________________
> Pkg-gmagick-im-team mailing list
> Pkg-gmagick-im-team@lists.alioth.debian.org
> http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-gmagick-im-team
Information forwarded
to debian-bugs-dist@lists.debian.org, ImageMagick Packaging Team <pkg-gmagick-im-team@lists.alioth.debian.org>: Bug#857426; Package src:imagemagick.
(Tue, 14 Mar 2017 11:36:02 GMT) (full text, mbox, link).
Acknowledgement sent
to Salvatore Bonaccorso <carnil@debian.org>:
Extra info received and forwarded to list. Copy sent to ImageMagick Packaging Team <pkg-gmagick-im-team@lists.alioth.debian.org>.
(Tue, 14 Mar 2017 11:36:03 GMT) (full text, mbox, link).
To: Bastien ROUCARIES <roucaries.bastien@gmail.com>
Cc: 857426@bugs.debian.org
Subject: Re: [Pkg-gmagick-im-team] Bug#857426: closed by Bastien ROUCARIES
<roucaries.bastien@gmail.com> (does not affect sid, )
Date: Tue, 14 Mar 2017 12:32:34 +0100
Hi Bastien,
On Tue, Mar 14, 2017 at 11:24:41AM +0100, Bastien ROUCARIES wrote:
> BTW I will open a CVE
Thanks.
> Moreover could you check if CVE-2016-10068 is fixed ? According to
> changelog it is and I could not apply patch (already applied)
Yep, it was already fixed with a previous DSA (the problem was that
the changelog did close the wrong bug, apparently the security-tracker
in consequence not updated correctly, since the issue had no CVE yet
at the time of the DSA).
Fixed that in the tracker!
Regards,
Salvatore
Changed Bug title to 'imagemagick: CVE-2016-10252: Memory leak in IsOptionMember function' from '[Bug 1671630] Memory leak in IsOptionMember function'.
Request was from Salvatore Bonaccorso <carnil@debian.org>
to control@bugs.debian.org.
(Wed, 15 Mar 2017 07:39:06 GMT) (full text, mbox, link).
Reply sent
to Bastien Roucariès <roucaries.bastien+debian@gmail.com>:
You have taken responsibility.
(Fri, 24 Mar 2017 12:36:21 GMT) (full text, mbox, link).
Notification sent
to Bastien ROUCARIES <roucaries.bastien@gmail.com>:
Bug acknowledged by developer.
(Fri, 24 Mar 2017 12:36:21 GMT) (full text, mbox, link).
Debbugs is free software and licensed under the terms of the GNU General
Public License version 2. The current version can be obtained
from https://bugs.debian.org/debbugs-source/.