GraphicsMagick Changelog

What's new in GraphicsMagick 1.3.43

Apr 1, 2024

Special Issues:
Due to my Internet provider (which I have used since 2001) failing to support the antiquated technology which hosts GraphicsMagickorg, and the simpledallastxus domain I have used since 1994, these services are now failing To make matters worse, due to dramatic changes in US domain registration in recent years, I do not know how to update the DNS registrations for simpledallastxus and my historical email address may be lost As time permits, GraphicsMagickorg will be re-hosted in the cloud at Linode
GraphicsMagick really does need some additional productive volunteers For several years now, the burden has entirely been on me (Bob Friesenhahn) I have been sheparding the project for 22 years already (and contributed to ImageMagick and GraphicsMagick combined for 28 years already) It is not reasonable to expect someone with a full time job (and expecting to retire in a few years) to do all of the work
Security Fixes:
GraphicsMagick is participating in Google's oss-fuzz project since February 4 2018 due to the contributions and assistance of Alex Gaynor and Paul Kehrer The issues list is available at https://bugschromiumorg/p/oss-fuzz/issues/list under search term "graphicsmagick" Issues are available for anyone to view and duplicate if they have been in "Verified" status for 30 days, or if they have been in "New" status for 90 days Please consult the GraphicsMagick ChangeLog file, Mercurial repository commit log, and the oss-fuzz issues list for details
GraphicsMagick has been participating in Synopsys's Coverity program for free software projects since 2015 There has been a continuing objective to keep outstanding defects at 0, or very close to 0 Information about the Coverity status may be found at https://scancoveritycom/projects/graphicsmagick
Bug fixes:
JBIG: Add support for 'width', 'height', and 'pixels', resource limits Your mileage may vary
WPG: Many fixes based on oss-fuzz testing
Ghostscript: When invoking Ghostscript, re-direct Ghostscript stdout to stderr to avoid output corruption when GM stdout is redirected to a file
New Features:
File write limit: Add support for a per-file write limit (-limit write or MAGICK_LIMIT_WRITE) This imposes a limit on the number of uncompressed bytes written The behavior when the limit is hit is similar to an unexpected write error, as if the disk is full
Resource limit highwater: Resource highwater values are maintained for successful resource requests and final values are traced via -debug resource' at the end of program execution These values may be used to understand the most restrictive resource limits which may be applied while still achieving successful operation
BMP: Support BI_PNG compression (PNG inside BMP)
BMP: Support reading 64 bits-per-pixel
BMP: Support reading 48 bits-per-pixel
HEIF: Call heif_init() and heif_deinit() if they are available Support setting image width limit
HRZ: Added support for Slow scan TV format
JPEG: Added support for reading and writing lossy or lossless 12 bits, and lossless 16-bits using libjpeg-turbo-30
JXL: Improve JXL reader/writer exception information
TIFF: Remove miniswhite/minisblack prohibitions when using Group3 and Group4 compression in order to allow using inverted photometric from the standard
TIFF: Store EXIF IFD and GPS IFD tag information natively in TIFF sub-IFDs, the same as it would be produced in a camera supporting TIFF This allows an EXIF profile from HEIF, JPEG, JXL, PNG, WebP, or from the META coder to be preserved in TIFF
API Updates:
ExpandFilenames(): Fix memory leak of existing allocations if realloc() fails
Windows Delegate Updates/Additions:
libjpeg: Update bundled IJG JPEG sources to version 9f
libtiff: Update bundled libtiff sources to version 451
Build Changes:
Since it seems that OSDN has died, Hepapod is now used to provide a redundant https-capable Hg service and may provide services that SourceForge does not offer Hg checkouts may now be made from "https://fossheptapodnet/graphicsmagick/graphicsmagick"
Autotools-based build: pkg-config provided data is now used to the maximal extent possible However, if pkg-config fails to provide useful data, then the previously existing tests will still prevail Document that
PKG_CONFIG='pkg-config --static' /configure
should reveal the private library dependencies needed for a fully-static build to succeed
Autotools-based build: Base decision on if OpenMP is supported on the '_OPENMP' pre-processor define
Autotools-based build: No longer search for (and use) libtrio by default The user now needs to request using it
Autotools-based build: Fixes for autoconf-272 Bootstrapped using Autoconf 269, Automake 1165, and Libtool 247
oss-fuzz build: The fuzzing/oss-fuzz-buildsh is re-written in order to support almost all possible dependency libraries For example, JXL and HEIF (with HEIC and AVIF reader support) are now included in oss-fuzz testing

New in GraphicsMagick 1.3.42 (Sep 24, 2023)

Special Issues:
GraphicsMagick really does need some additional productive volunteers. For several years now, the burden has entirely been on me (Bob Friesenhahn). I have been sheparding the project for 22 years already (and contributed to ImageMagick and GraphicsMagick combined for 27 years already). It is not reasonable to expect someone with a full time job (and expecting to retire in a few years) to do all of the work.
Security Fixes:
GraphicsMagick is participating in Google's oss-fuzz project since February 4 2018 due to the contributions and assistance of Alex Gaynor and Paul Kehrer. The issues list is available at https://bugs.chromium.org/p/oss-fuzz/issues/list under search term "graphicsmagick". Issues are available for anyone to view and duplicate if they have been in "Verified" status for 30 days, or if they have been in "New" status for 90 days. Please consult the GraphicsMagick ChangeLog file, Mercurial repository commit log, and the oss-fuzz issues list for details.
GraphicsMagick has been participating in Synopsys's Coverity program for free software projects since 2015. There has been a continuing objective to keep outstanding defects at 0, or very close to 0. Information about the Coverity status may be found at https://scan.coverity.com/projects/graphicsmagick.
Bug fixes:
Blob: Immediately reject attempts to write blobs to formats which can not support blobs.
TranslateTextEx(): An empty string argument should return an empty string rather than a NULL string.
SetImageAttribute(): Fix bounds issue when concatenating string.
JPEG: Do not set image resolution if the values provided are outside of the valid range.
Fixes for NaN when reading formats based on floating point.
HEIF: Fix reading images with rotation/transformation.
BMP: Do not decode primaries or gamma unless colorspace is LCS_CALIBRATED_RGB. Add/correct bmp_info.size "biSize" logic which decides if header chunks are present (or invalid).
MNG: Fixes for resizing using X_method 5.
GM command (convert, montage, mogrify): Many command-line parser fixes/checks for invalid command line syntax which causes unexpected behavior, or core dumps.
TopoL: Given that a writer is now provided, issues found in the reader (and writer) due to continual fuzz-testing have been fixed, as encountered.
GetImageClippingPathAttribute(): Check for and use clipping path name (ID=2999) to get the real attribute name.
ReadIPTCProfile(): Fix malformed IPTC data parsing.
New Features:
TopoL: Now provides a writer.
WPG: Now provides a writer.
gm batch: Implement simple Test Anything Protocol (TAP) test counting and "ok N"/"not ok N" messaging.
TIFF: Support '-define tiff:photometric=minisblack' and '-define tiff:photometric=miniswhite' to be able to adjust the sense used when writing bilevel TIFF images.
TIFF: Require that TIFFTAG_EXTRASAMPLES be used appropriately to indicate the intention of extra channels.
utilities/tests/gen-tiff-images/genimages: Script for writing (and then reading) thousands (5568 permutations) of TIFF format variants.
EXIF and PNG: Retrieve image orientation from EXIF (if present) and store in image.
HEIF: Retrieve image orientation from EXIF and store in image.
API Updates:
None
Windows Delegate Updates/Additions:
None
Build Changes:
A CMake script is provided as an option for building the Visual Studio project generator, configure.exe.
pkg-config files now consider static building.
Unixish configure now uses Use pkg-config for libheif to ease static building.
TclMagick: Integrated TclMagick build fixes (patches) targeting Unix-type systems.
LibJXL: Compiles against development 0.9.0 API as existed on July 8, 2023.
The GraphicsMagick++-config script provides a --cxx option to reproduce the name of the C++ compiler which was used.
The GraphicsMagick-config script provides a --cc option to reproduce the name of the C compiler which was used.
Behavior Changes:
The ability to extend existing image attribute text by calling SetImageAttribute() multiple times with the same key is now deprecated, and will soon be removed. In the mean time, the annoying message "SetImageAttribute: Extending attribute value text is deprecated!" is printed to the standard error output to help expose code which is using this feature.

New in GraphicsMagick 1.3.41 (Aug 13, 2023)

Special Issues:
GraphicsMagick really does need some additional productive volunteers. For several years now, the burden has entirely been on me (Bob Friesenhahn). I have been sheparding the project for 22 years already (and contributed to ImageMagick and GraphicsMagick combined for 27 years already). It is not reasonable to expect someone with a full time job (and expecting to retire in a few years) to do all of the work.
Security Fixes:
GraphicsMagick is participating in Google's oss-fuzz project since February 4 2018 due to the contributions and assistance of Alex Gaynor and Paul Kehrer. The issues list is available at https://bugs.chromium.org/p/oss-fuzz/issues/list under search term "graphicsmagick". Issues are available for anyone to view and duplicate if they have been in "Verified" status for 30 days, or if they have been in "New" status for 90 days. Please consult the GraphicsMagick ChangeLog file, Mercurial repository commit log, and the oss-fuzz issues list for details.
GraphicsMagick has been participating in Synopsys's Coverity program for free software projects since 2015. There has been a continuing objective to keep outstanding defects at 0, or very close to 0. Information about the Coverity status may be found at https://scan.coverity.com/projects/graphicsmagick.
Bug fixes:
Blob: Immediately reject attempts to write blobs to formats which can not support blobs.
TranslateTextEx(): An empty string argument should return an empty string rather than a NULL string.
SetImageAttribute(): Fix bounds issue when concatenating string.
JPEG: Do not set image resolution if the values provided are outside of the valid range.
Fixes for NaN when reading formats based on floating point.
HEIF: Fix reading images with rotation/transformation.
BMP: Do not decode primaries or gamma unless colorspace is LCS_CALIBRATED_RGB. Add/correct bmp_info.size "biSize" logic which decides if header chunks are present (or invalid).
MNG: Fixes for resizing using X_method 5.
GM command (convert, montage, mogrify): Many command-line parser fixes/checks for invalid command line syntax which causes unexpected behavior, or core dumps.
TopoL: Given that a writer is now provided, issues found in the reader (and writer) due to continual fuzz-testing have been fixed, as encountered.
GetImageClippingPathAttribute(): Check for and use clipping path name (ID=2999) to get the real attribute name.
ReadIPTCProfile(): Fix malformed IPTC data parsing.
New Features:
TopoL: Now provides a writer.
WPG: Now provides a writer.
gm batch: Implement simple Test Anything Protocol (TAP) test counting and "ok N"/"not ok N" messaging.
TIFF: Support '-define tiff:photometric=minisblack' and '-define tiff:photometric=miniswhite' to be able to adjust the sense used when writing bilevel TIFF images.
TIFF: Require that TIFFTAG_EXTRASAMPLES be used appropriately to indicate the intention of extra channels.
utilities/tests/gen-tiff-images/genimages: Script for writing (and then reading) thousands (5568 permutations) of TIFF format variants.
EXIF and PNG: Retrieve image orientation from EXIF (if present) and store in image.
HEIF: Retrieve image orientation from EXIF and store in image.
API Updates:
None
Windows Delegate Updates/Additions:
None
Build Changes:
A CMake script is provided as an option for building the Visual Studio project generator, configure.exe.
pkg-config files now consider static building.
Unixish configure now uses Use pkg-config for libheif to ease static building.
TclMagick: Integrated TclMagick build fixes (patches) targeting Unix-type systems.
LibJXL: Compiles against development 0.9.0 API as existed on July 8, 2023.
The GraphicsMagick++-config script provides a --cxx option to reproduce the name of the C++ compiler which was used.
The GraphicsMagick-config script provides a --cc option to reproduce the name of the C compiler which was used.
Behavior Changes:
The ability to extend existing image attribute text by calling SetImageAttribute() multiple times with the same key is now deprecated, and will soon be removed. In the mean time, the annoying message "SetImageAttribute: Extending attribute value text is deprecated!" is printed to the standard error output to help expose code which is using this feature.

New in GraphicsMagick 1.3.35 (Feb 23, 2020)

Special Issues:
It has been discovered that the 'ICU' library (a perhaps 30MB C++ library) which is now often a libxml2 dependendency causes huge process initialization overhead. This is noticed as unexpected slowness when GraphicsMagick utilities are used to process small to medium sized files. The time to initialize the 'ICU' library is often longer than the time that GraphicsMagick would otherwise require to read the input file, process the image, and write the output file. If the 'ICU' dependency can not be avoided, then make sure to use the modules build so there is only impact for file formats which require libxml2. Please lobby the 'ICU' library developers to change their implementation to avoid long start-up times due to merely linking with the library.
Security Fixes:
GraphicsMagick is now participating in Google's oss-fuzz project due to the contributions and assistance of Alex Gaynor. Since February 4 2018, 398 issues have been opened by oss-fuzz (some of which were benign build issues) and 11 issues remain open. The issues list is available at https://bugs.chromium.org/p/oss-fuzz/issues/list under search term "graphicsmagick". Issues are available for anyone to view and duplicate if they have been in "Verified" status for 30 days, or if they have been in "New" status for 90 days. There are too many fixes to list here. Please consult the GraphicsMagick ChangeLog file, Mercurial repository commit log, and the oss-fuzz issues list for details.
Bug fixes:
Fix broken definition of ResourceInfinity which resulted in that GetMagickResource() would return -1 rather than the maximum range value for the return type as documented. (problem added by the 1.3.32 release).
ModifyCache(): Re-open the pixel cache if the cache rows/columns do not match the owning image rows/columns.
Fix DisplayImages() return status. The return status was inverted.
HISTOGRAM: Histogram once again includes the histogram as a text comment. This became broken by previous security fixes.
PICT: Fixed heap buffer overuns reported multiple sources.
NG: Detect when JPEG encoder has failed and throw an exception.
MVG/DrawImage(): Performs even more parsing validations.
Clang static analyzer fixes: A great many fixes were made based on problem reports by the Clang static analyzer.
Visual Studio static analyzer fixes: A great many fixes were made based on problem reports by the Visual Studio 2019 static analyzer. Many of these may improve the robustness of 64-bit code.
New Features:
GRADIENT/GradientImage(): Improved accuracy of gradient levels as well as dramaticaly improving performance. Output PseudoClass images if we can. Add support for using the image 'gravity' attribute as well as the "gradient:direction" definition to produce gradient vector directions corresponding to SouthGravity (the previously-existing default), NorthGravity, WestGravity, EastGravity, NorthWestGravity, NorthEastGravity, SouthWestGravity, and SouthEastGravity.
API Updates:
InitializeMagickEx(): New function which may be used in place of InitializeMagick() to initialize GraphicsMagick. This initialization function returns an error status value, may update a passed ExceptionInfo structure with error information, and provides an options parameter which supports simple bit-flags to tailor initialization. The signal handler registrations are skipped if the MAGICK_OPT_NO_SIGNAL_HANDER flag is set in the options.
Feature improvements:
Replace use of non-reentrant legacy POSIX functions with reentrant equivalents.
Timing of image reads should now be very accurate. The timer was sometimes not stopped as soon as it should be.
PICT: The PICT reader is working pretty good now. It handles all the PICT image files I have available to me.
Windows Delegate Updates/Additions:
None
Build Changes:
Visual Studio Build: Configure program now provides a checkbox to enable common optimizations for better performance.
Behavior Changes:
POSIX Signals: Use the normal termination signal handler for SIGXCPU and SIGXFSZ so that ulimit or setrlimit(2) may be used to apply CPU (RLIMIT_CPU) and output file size (RLIMIT_FSIZE) limits with the normal cleanup, and without dumping core. Note that any output files currently being written may be truncated and files being written by external programs (e.g. Ghostscript) might be left behind unless they are to a temporary file assigned by GraphicsMagick.
Some private string and integer constants were removed from the apparent library ABI. Some private functions were marked static and removed from the apparent library ABI. This is mentioned because someone is sure to notice and be concerned about it.
The remaining private content in installed header files was moved into -private.h header files which are not installed. This should not be cause for concern but is mentiond because someone is sure to notice and be concerned about it.

New in GraphicsMagick 1.3.34 (Dec 24, 2019)

Special Issues:
It has been discovered that the 'ICU' library (a perhaps 30MB C++ library) which is now often a libxml2 dependendency causes huge process initialization overhead. This is noticed as unexpected slowness when GraphicsMagick utilities are used to process small to medium sized files. The time to initialize the 'ICU' library is often longer than the time that GraphicsMagick would otherwise require to read the input file, process the image, and write the output file. If the 'ICU' dependency can not be avoided, then make sure to use the modules build so there is only impact for file formats which require libxml2. Please lobby the 'ICU' library developers to change their implementation to avoid long start-up times due to merely linking with the library.
Security Fixes:
GraphicsMagick is now participating in Google's oss-fuzz project due to the contributions and assistance of Alex Gaynor. Since February 4 2018, 386 issues have been opened by oss-fuzz (some of which were benign build issues) and 376 of those issues have been resolved. The issues list is available at https://bugs.chromium.org/p/oss-fuzz/issues/list under search term "graphicsmagick". Issues are available for anyone to view and duplicate if they have been in "Verified" status for 30 days, or if they have been in "New" status for 90 days. There are too many fixes to list here. Please consult the GraphicsMagick ChangeLog file, Mercurial repository commit log, and the oss-fuzz issues list for details.
Bug fixes:
DPS: Eliminate a memory leak.
Debug Trace: Only output text to terminate an XML format log file if XML format is active.
EXIF Parser: Detect non-terminal parsing and report an error.
EXIF Parser: Eliminate heap buffer overflows.
HuffmanDecodeImage(): Fix heap overflow in 32-bit applications.
MAT: Implement subimage/subrange support.
MVG: Address non-terminal loops, excessive run-time, thrown assertions, divide-by-zero, heap overflow, and memory leaks.
OpenModule(): Now properly case-insensitive, as it used to be.
PCX: Verify that pixel region is not negative. Assure that opacity channel is initialized to opaqueOpacity. Update DirectClass representation while PseudoClass representation is updated. Improve read performance with uncompressed PCX.
PICT: Fix heap overflow in PICT writer.
PNG: Fix validation of raw profile length.
PNG: Skip coalescing layers if there is only one layer.
PNM: Fix denial of service opportunity by limiting the length of PNM comment text.
WPG: Avoid Avoid dereferencing a null pointer.
WPG: Implement subimage/subrange support.
WPG: Improve performance when reading an embedded image.
Wand library: In MagickClearException(), destroy any existing exception info before re-initializing the exception info or else there will be a memory leak.
XPM: Rquire that image properties appear in the first 512 bytes of the XPM file header.
New Features:
Visual Studio build supports JBIG and WebP compression in TIFF format.
Feature improvements:
Compliles clean using GCC 9.
Windows Delegate Updates/Additions:
bzlib: bzip is updated to 1.0.8 release.
jbig: jbigkit is updated to 2.1 release.
lcms: lcms2 is updated to 2.9 release.
libxml: libxml2 is updated to 2.9.10 release.
png: libpng is updated to 1.6.37 release.
tiff: libtiff is updated to 4.1.0 release.
webp: libwebp is updated to the 1.0.3 release.
zlib: zlib is updated to 1.2.11 release.
TIFF: Now also supports reading JBIG-compressed TIFF, and reading/writing WebP-compressed TIFF. A number of libtiff feature options which are now commonly enabled were disabled and are now enabled by default.
Build Changes:
MinGW: Static and shared library builds were not working. Only the modules build was actually working!
Python scripts related to the build (enabled by --enable-maintainer-mode) are now compatible with Python 3.
Now supports using Google gperftools tcmalloc library for the memory allocator. This improves performance for certain repetitive work-loads and heavily-threaded algorithms.
Configure now reports the status of zstd (FaceBook Zstandard) compression in its configuration summary.
TclMagick: Address many issues mentioned by SourceForge issue #420 "TclMagick issues and patch".
Behavior Changes:
PNG: Post-processing to convert the image type in the PNG reader based on a specified magick prefix string is now disabled. This can (and should) be done after the image has been returned.
Trace Logging: The compiled-in logging default is always to stderr, which may be over-ridden using log.mgk as soon as it is loaded.
Windows Build: Search registry key HKEY_CURRENT_USER as well as HKEY_LOCAL_MACHINE when searching for Ghostscript. By following the procedure documented in SourceForge bug 615 "GhostScript installation check", this allows for local user installations without "administrator" privileges.

New in GraphicsMagick 1.3.32 (Jun 16, 2019)

Please note that this file records news for the associated development branch and that each development branch has its own NEWS file. See the ChangeLog file, and/or the Mercurial changesets, for full details.
Due to significant issues being discovered and addressed for almost every release, it is recommended to update to the most current release and not attempt to patch older releases.
1.3.32 (June 15, 2019)
Special Issues:
It has been discovered that the 'ICU' library (a perhaps 30MB C++ library) which is now often a libxml2 dependendency causes huge process initialization overhead. This is noticed as unexpected slowness when GraphicsMagick utilities are used to process small to medium sized files. The time to initialize is often longer than the time to read the input file, process the image, and write the output file. If the 'ICU' dependency can not be avoided, then make sure to use the modules build. Please lobby the 'ICU' library developers to change their implementation to avoid long start-up times due to merely linking with the library.
Security Fixes:
GraphicsMagick is now participating in Google's oss-fuzz project due to the contributions and assistance of Alex Gaynor. Since February 4 2018, 343 issues have been opened by oss-fuzz and 331 of those issues have been resolved. The issues list is available at https://bugs.chromium.org/p/oss-fuzz/issues/list under search term "graphicsmagick". Issues are available for anyone to view and duplicate if they have been in "Verified" status for 30 days, or if they have been in "New" status for 90 days. There are too many fixes to list here. Please consult the GraphicsMagick ChangeLog file, Mercurial repository commit log, and the oss-fuzz issues list for details.
BMP reader: Fix heap overflow in 32-bit build due to arithmetic overflow. Only happens if limits are changed from defaults.
BMP reader/writer: Improve buffer-size calculations to guard against buffer overflows.
DIB reader: Reject files which claim more than 8-bits per pixel but also claim to be colormapped.
DIB reader/writer: Improve buffer-size calculations to guard against buffer overflows.
MIFF reader: Detect end of file while reading RLE packets.
MIFF reader: Fix heap overflow (for some files using RLE compression) caused by a typo in the code.
MAT writer: Added missing error handling to avoid heap overflow.
MNG reader: Fixed a small heap buffer overflow.
SVG reader: Fixed a stack buffer overflow.
TGA writer: Fix heap overflow when image rows/columns are larger than 65535.
TIFF reader: Rationalize tile width/height to reject large tile sizes which are much larger than the image dimensions.
TIFF reader: Apply memory resource limits to strip and tile allocations.
WMF reader: Fixed a division by zero problem.
XWD reader: Many heap buffer overflows and uses of uninitialized data were fixed.
Pixel cache: Now apply resource limits to pixel nexus allocations using the same limits (total pixels, width, height, memory) as applied to the whole image since some requests are directly influenced by the input file. More tests are added for arithmetic overflow. Care was taken to minimize performance impact due to the many extra checks.
Bug fixes:
See above note about oss-fuzz fixes.
Fixed include order of magick/api.h vs wand/wand_symbols.h.
WriteImage(): Eliminate use of just-freed memory in clone_info->magick when throwing exception due to no support for format.
Magick++/lib/Magick++/Drawable.h: Fix use of clang diagnostic syntax.
DIB: Preserve PseudoClass opaque representation if ICO mask is opaque.
JPEG reader: Restore ability to access detailed image properties while in 'ping' mode.
JPEG reader: Base test for "Unreasonable dimensions" on original JPEG dimensions and not the scaled dimensions.
JPEG reader: Allow input files to have a compression ratio as high as 2500. Extremely compressed files were being rejected.
FreeType renderer: Fixed a memory leak.
PDF writer: Fixed a memory leak.
PDF writer: Fixed a thread safety problem.
PICT reader: Fix a thread safety problem.
Exception reporting: Throwing an exception was not thread safe. Now it is.
Exception reporting: Handle the case where some passed character strings refer to existing exception character strings.
Command-line parser now does not attempt to read a list of filenames from a file in '@name' syntax if the path '@name' exists. Previously it would attempt to read a list of file names from 'name' even if '@name' did exist.
Rendering: Short-circuit path parsing and return and error immediately if an error occurs.
New Features:
Added support for writing the Braille image format (by Samuel Thibault).
WebP writer: Support WebP 'use_sharp_yuv' option ("if needed, use sharp (and slow) RGB->YUV conversion") via -define webp:use-sharp-yuv=true.
The version command output now reports the OpenMP specification number rather than just the integer version identifier.
API Updates:
ReallocateImageColormap() added to re-allocate an existing colormap.
Some improperly-exposed globals are now static as they should have been.
Feature improvements:
Microsoft Windows timing information now uses QueryPerformanceFrequency() and QueryPerformanceCounter() for increased precision.
The 'benchmark' command now shows 6 digits (microseconds) of elapsed time indication.
The 'time' command now shows 6 digits (microseconds) of elapsed time indication.
The logging facility now shows 6 digits (microseconds) of time resolulution
Dcraw: When QuantumDepth is greater than 8, pass -6 option to dcraw so that it returns a 16-bit/sample image.
Dcraw: If Dcraw supports TIFF format, then request TIFF format in order to be able to acquire more metatdata.
Scale algorithm: Eliminate artifacts when scaling an image with semi-transparent pixels.
Library metrics: The number of shared library relocations and the amount of initialized data has been signficantly reduced by following recommendations from Ulrich Drepper's document How To Write Shared Libraries.
As can be seen, the number of relocations was extreme and has been reduced to reasonable levels while also diminishing the amount of initialized data and the total size of the library/program. Most of the remaining initialized data (106,648 bytes) and some of the relocations (65 relocations) may be attributed to the optional X11 animate/display/import support.
Windows Delegate Updates/Additions:
None
Build Changes:
The test suite now passes even if no fonts are found.
Configure script does better at finding Windows fonts on non-Windows systems.
The configure script now supports the option --with-mtmalloc to enable use of the mtmalloc library as found on Solaris-derived systems.
Behavior Changes:
AnnotateImage(): No longer implicitly call TranslateText() since this is not suitable for most use-cases and causes additional performance impact. The API user can perform such translations in advance on the text string using TranslateText() if need be.

New in GraphicsMagick 1.3.31 (Nov 18, 2018)

Special Issues:
Firmware and operating system updates to address the Spectre vulnerability (and possibly to some extent the Meltdown vulnerability) have substantially penalized GraphicsMagick's OpenMP performance. Performance is reduced even with GCC 7 and 8's improved optimizers. There does not appear to be anything we can do about this.
Security Fixes:
GraphicsMagick is now participating in Google's oss-fuzz project due to the contributions and assistance of Alex Gaynor. Since February 4 2018, 292 issues have been opened by oss-fuzz and 279 of those issues have been resolved. The issues list is available at https://bugs.chromium.org/p/oss-fuzz/issues/list under search term "graphicsmagick". Issues are available for anyone to view and duplicate if they have been in "Verified" status for 30 days, or if they have been in "New" status for 90 days. There are too many fixes to list here. Please consult the GraphicsMagick ChangeLog file, Mercurial repository commit log, and the oss-fuzz issues list for details.
Bug fixes:
See above note about oss-fuzz fixes.
CINEON: Fix unexpected hang on a crafted Cineon image. SourceForge issue 571.
Drawing recursion is limited to 100 and may be tuned via the MAX_DRAWIMAGE_RECURSION pre-processor definition.
Fix reading MIFF files using legacy keyword 'color-profile' for ICC color profile as was used by ImageMagick 4.2.9.
Fix reading/writing files when 'magick' is specified in lower case. This bug was a regression in 1.3.30.
New Features:
TIFF: Support Zstd compression in TIFF. This requires libtiff 4.0.10 or later.
TIFF: Support WebP compression in TIFF. This requires libtiff 4.0.10 or later.
API Updates:
MagickMonitor() is marked as deprecated. Code should not be using this function any more.
Feature improvements:
The progress monitor callbacks (registered using MagickMonitor() or MagickMonitorFormatted()) are serialized via a common semaphore rather than via critical sections in OpenMP loops. OpenMP loops are updated to use OpenMP 'atomic' and 'flush' to update shared loop variables rather than using a OpenMP 'critical' construct, reducing contention. Performance on some targets is observed to have been improved by this change.
Windows Delegate Updates/Additions:
None
Build Changes:
There was already a 'compare' command installed with the '--enable-magick-compat' configure option was used but it did not function. Now it functions. There was no compare command in ImageMagick 5.5.2 and this compare command is only roughly similar to a compare command in some subsequent ImageMagick release.
Removed Remove Ghostscript library support (--with-gslib) from configure script. The 'HasGS' pre-processor defines which were enabled by this remain in the source code so it is still possible to use this library if absolutely necessary (e.g. CPPFLAGS=-DHasGS LIBS=-lgs).
No longer explicitly link with the OpenMP library when it will be supplied already due to CFLAGS.
Behavior Changes:
JPEG: Libjpeg-turbo is allowed 1/5th the memory resource limit provided for Graphicsmagick via the cinfo->mem->max_memory_to_use option, which is part of the IJG JPEG API/ABI, but usually not supported there. This feature works for libjpeg-turbo 1.5.2 and later. Limiting the memory usage is useful since libjpeg-turbo may otherwise consume arbitrary amounts of memory even before Graphicsmagick is informed of the image dimensions.
JPEG: The maximum number of JPEG progressive scans is limited to 50. Otherwise some technically valid files could be read for almost forever.

New in GraphicsMagick 1.3.30 (Jun 24, 2018)

Security Fixes:
GraphicsMagick is now participating in Google's oss-fuzz project due to the contributions and assistance of Alex Gaynor. Since February 4 2018, 238 issues have been opened by oss-fuzz and 230 of those issues have been resolved. The issues list is available at https://bugs.chromium.org/p/oss-fuzz/issues/list under search term "graphicsmagick". Issues are available for anyone to view and duplicate if they have been in "Verified" status for 30 days, or if they have been in "New" status for 90 days. There are too many fixes to list here. Please consult the GraphicsMagick ChangeLog file, Mercurial repository commit log, and the oss-fuzz issues list for details.
SVG/Rendering: Fix heap write overflow of PrimitiveInfo and PointInfo arrays. This is another manefestation of CVE-2016-2317, which should finally be fixed correctly due to active detection/correction of pending overflow rather than using estimation.
Bug fixes:
Many oss-fuzz fixes are bug fixes.
Drawing/Rendering: Many more fixes by Gregory J Wolfe (see the ChangeLog).
MIFF: Detect end of file while reading image directory.
SVG: Many more fixes by Gregory J Wolfe (see the ChangeLog).
The AlphaCompositePixel macro was producing wrong results when the output alpha value was not 100% opaque. This is a regression introduced in 1.3.29.
TILE: Fix problem with tiling JPEG images because the size request used by the TILE algorithm was also causing re-scaling in the JPEG reader. The problem is solved by stripping the size request before reading the image.
API Updates:
The size of PrimitiveInfo (believed to be an internal/private structure but in a header which is installed, has been increased to store a 'flags' argument. This is intended to be an internal interface but but may be detected as an ABI change.
Build Changes:
The oss-fuzz build script (fuzzing/oss-fuzz-build.sh) now includes many delegate libraries such as zlib, libpng, libtiff, libjpeg, and freetype, resulting in more comprehensive testing. The Q16 build is now being tested rather than the 'configure' default of Q8.
Behavior Changes:
JPEG: The JPEG reader now allows 3 warnings of any particular type before giving up on reading and throwing an exception. This choice was made after observing files which produce hundreds of warnings and consume massive amounts of memory before reading the image data has even started. It is currently unknown how many files which were previously accepted will be rejected by default. The number of allowed warnings may be adjusted using '-define jpeg:max-warnings=<value>'. The default limit will be adjusted based on reported user experiences and may be adjusted prior to compilation via the MaxWarningCount definition in coders/jpeg.c.

New in GraphicsMagick 1.3.29 (Apr 30, 2018)

Special Issues:
None
Security Fixes:
GraphicsMagick is now participating in Google's oss-fuzz project due to the contributions and assistance of Alex Gaynor. Since February 4 2018, 180 issues have been opened by oss-fuzz and 173 of those issues have been resolved. The issues list is available at https://bugs.chromium.org/p/oss-fuzz/issues/list under search term "graphicsmagick". Issues are available for anyone to view and duplicate if they have been in "Verified" status for 30 days, or if they have been in "New" status for 90 days. There are too many fixes to list here. Please consult the GraphicsMagick ChangeLog file, Mercurial repository commit log, and the oss-fuzz issues list for details.
JNG: Require that the embedded JPEG image have the same dimensions as the JNG image as provided by JHDR. Avoids a heap write overflow.
MNG: Arbitrarily limit the number of loops which may be requested by the MNG LOOP chunk to 512 loops, and provide the '-define mng:maximum-loops=value' option in case the user wants to change the limit. This fixes a denial of service caused by large LOOP specifications.
Bug fixes:
Many oss-fuzz fixes are bug fixes.
DICOM: Pre/post rescale functions are temporarily disabled (until the implementation is fixed).
JPEG: Fix regression in last release in which reading some JPEG files produces the error "Improper call to JPEG library in state 201".
ICON: Some DIB-based Windows ICON files were reported as corrupt to an unexpectedly missing opacity mask image.
In-memory Blob I/O: Don't implicitly increase the allocation size due to seek offsets.
MNG: Detect and handle failure to allocate global PLTE. Fix divide by zero.
DrawGetStrokeDashArray(): Check for failure to allocate memory.
BlobToImage(): Now produces useful exception reports to cover the cases where 'magick' was not set and the file format could not be deduced from its header.
New Features:
None
API Updates:
Wand API: Added MagickIsPaletteImage(), MagickIsOpaqueImage(), MagickIsMonochromeImage(), MagickIsGrayImage(), MagickHasColormap() based on contributions by Troy Patteson.
New structure ImageExtra added and Image 'clip_mask' member is replaced by 'extra' which points to private ImageExtra allocation. The ImageGetClipMask() function now provides access to the clip mask image.
New structure DrawInfoExtra and DrawInfo 'clip_path' is replaced by 'extra' which points to private DrawInfoExtra allocation. The DrawInfoGetClipPath() function now provides access to the clip path.
New core library functions: GetImageCompositeMask(), CompositeMaskImage(), CompositePathImage(), SetImageCompositeMask(), ImageGetClipMask(), ImageGetCompositeMask(), DrawInfoGetClipPath(), DrawInfoGetCompositePath()
Deprecated core library functions: RegisterStaticModules(), UnregisterStaticModules().
Feature improvements:
Static modules (in static library or shared library without dynamically loadable modules) are now lazy-loaded using the same external interface as the lazy-loader for dynamic modules. This results in more similarity between the builds and reduces the fixed initialization overhead by only initializing the modules which are used.
SVG: The quality of SVG support has been significantly improved due to the efforts of Greg Wolfe.
FreeType/TTF rendering: Rendering fixes for opacity.
Windows Delegate Updates/Additions:
None
Build Changes:
None
Behavior Changes:
None

New in GraphicsMagick 1.3.28 (Jan 21, 2018)

Security Fixes:
BMP: Fix non-terminal loop due to unexpected bit-field mask value (DOS opportunity).
PALM: Fix heap buffer underflow in builds with QuantumDepth=8.
SetNexus() Fix heap overwrite under certain conditions due to using a wrong destination buffer. This issue impacts all 1.3.X releases.
TIFF: Fix heap buffer read overflow in LocaleNCompare() when parsing NEWS profile.
Bug fixes:
DescribeImage(): Eliminate possible use of null pointer.
GIF: Fix memory leak of global colormap in error path.
GZ: Writing to gzip files with the extension ".gz" was not working with Zlib 1.2.8.
JNG: Fix buffer read overflow (a tiny fixed overflow of just one byte).
JPEG: Promoting certain libjpeg warnings to errors caused much more problems than expected. The promotion of warnings to errors is removed. Claimed pixel dimensions are validated by file size before allocating memory for the pixels.
IntegralRotateImage(): Assure that reported error in rotate by 270 case does immediately terminate processing.
MNG: Fix possible null pointer reference related to DEFI chunk parsing. Fix minor heap read overflow (constrained to just one byte) due to an ordering issue in a limit check. Fix memory leaks in error path.
WebP: Fix stack buffer overflow in WriteWEBPImage() which occurs with libwebp 0.5.0 or newer due to a structure type change in the structure passed to the progress monitor callback.
WPG: Memory leaks fixed.
API Updates:
InterpolateViewColor(): This function now returns MagickPassFail (an unsigned int) rather than void so that errors can be efficiently reported.
The magick/pixel_cache.h header is updated to add deprecation attributes such that code using GetPixels(), GetIndexes(), and GetOnePixel() will produce deprecation warnings for compilers which support them. These functions will not be removed in the 1.3.X release series and when they are removed, pre-processor macros will be added so a replacement function is used instead. There is a long-term objective to eliminate functionally-redundant pixel cache functions to only the ones with the best properties since this reduces maintenance and may reduce the depth of the call stack (improving performance).
Build Changes:
PerlMagick: Sanitize PACKAGE_VERSION so that Perl is not confused by any trailing alpha character.
Improved symbol renaming due to adding --enable-symbol-prefix. Some symbols (for static const strings) were not being included in the renaming

New in GraphicsMagick 1.3.27 (Dec 11, 2017)

Special Issues:
None
Security Fixes:
CMYK: Fix heap overwrites in raw CMYK writer. Fix heap overwrites in raw CMYK reader (noticed when doing montage).
GIF: Assure that global colormap is initialized.
DescribeImage(): Fix possible heap write overflow when describing visual image directory. Fix possible heap read overflow while accessing heap data, and possible information disclosure while describing the IPTC profile.
DICOM: Fix huge memory allocation based on bogus length value (DOS opportunity).
DrawDashPolygon(): Fix heap out of bounds read in render code.
GRAY: Fix heap overwrites in raw GRAY reader (noticed when doing montage).
JNG: Fix heap overruns. Fix assertions.
JNG: Prevent a crash due to zero-length color_image while reading a JNG image. (CVE-2017-11102). Reject JNG files with unreasonable dimensions given the file size (avoid DOS).
JNX: Fix DOS due to excessive memory allocations with corrupt file.
JPEG: Do not allocate backing image pixels until a scanline has been successfully read. Avoids DOS opportunity with suitably manufactured file.
MAP: Fix null pointer dereference or segmentation violation.
MAT: Fix heap write overflow.
MNG: Reject over-large (65k by 65k) image. Fix heap overwrites.
PAM: Fix heap buffer overflow in PAM writer for 1 bit/sample + alpha.
PICT: Fix excessive memory allocation due to malformed image file.
PNG: Fix heap buffer overflow in PNG writer when promoting from indexed PNG to RGBA.
PNM: Fix DOS due to excessive memory allocations with corrupt file.
RGB: Fix heap overwrite in raw RGB writer. Fix heap overwrites in raw RGB reader (noticed when doing montage).
RLE: Fix DOS opportunities due to false claims in image header. Fix heap out of bounds read.
SFW: Avoid possible heap write overflow.
SUN: Fix heap read overflow. Fix DOS due to excessive memory allocations with corrupt file.
SVG: Fix heap write overflow.
TIFF: Use heuristics to avoid DOS (excessive memory use) due to false claims by input file. It is possible that this may reject some valid files. Fix possible small heap overwrite beyond the allocated scanline buffer due to the NumberOfObjectsInArray() macro rounding up rather than down.
UIL: Fix heap overwrite in writer.
WPG: Fix DOS issues (memory, disk space, CPU time) due to insufficient validations. Fix heap overwrites.
XBM: Fix DOS issue where code remains stuck in loop and does not return.
XV 332 (PNM): Fix null pointer dereference due to malformed file.
TracePSClippingPath()/TraceSVGClippingPath(): Fix heap out of bounds read.
Validate path entries in the MAGICK_CODER_MODULE_PATH and MAGICK_FILTER_MODULE_PATH environment variables and convert all paths to real paths if possible. This avoids possible use of relative paths to load modules (a possible security issue), or the possibility of adding a directory which was in the path, but missing, and may improve efficiency by removing non-existent paths.
Bug fixes:
AVS: Memory leaks eliminated.
CINEON: Fix possible use of NULL pointer.
CMYK: Memory leaks eliminated.
CUT: Memory leaks eliminated. Fix possible use of NULL pointer.
DCM: Fix possible use of NULL pointer.
DrawImage(): Avoid "negative" strncpy(). This seems to be benign with glibc but perhaps not with other implementations.
DPX: Memory leaks eliminated.
EMF: Fix possible use of NULL pointer.
FindMagickModule(): Fix possible use of NULL pointer.
FITS: Fix memory leak.
GIF: Fix memory leak.
HDF: Memory leaks eliminated.
HISTOGRAM: Fix memory leak.
JNG: Memory leaks eliminated. Memory use after free and double-free issues eliminated. Error reporting fixes.
Magick::Options::strokeDashArray(): Fix possible use of NULL pointer.
MagickXFileBrowserWidget(): Fix possible use of NULL pointer.
MAT: Memory leaks eliminated.
MagickMapCloneMap(): Fix possible assertion failure.
MNG: Memory use after free issues eliminated. Fix possible use of NULL pointer. Fix memory leaks.
MontageImageCommand(): Fix memory leaks.
MPC: Fix memory leak in writer.
MPEG: Fix memory leaks in writer.
MTV: Memory leaks eliminated.
NTRegistryKeyLookup(): Fix possible use of NULL pointer.
NTGetTypeList(): Fix possible use of NULL pointer.
PCD: Memory leaks eliminated.
PCL: Fix null pointer dereference in PCL writer.
PCX: Memory leaks eliminated.
PALM: Fix possible use of NULL pointer. Fix memory leak.
PICT: Memory leaks eliminated.
PNG: Fix small (one-off) heap read overflow.
PNM: Fix memory leaks.
PS: Fix use of null pointer in error path.
PWP: Fix possible use of null pointer.
ReplaceImageColormap(): Throw an exception rather than assertion if the input image is not colormapped.
RGB: Fix memory leak.
SegmentImage(): Fix possible use of NULL pointer.
SetImageProfile(): Fix possible assertion failure.
SGI: Check for EOF while reading SGI file header.
SUN: Fix memory leak.
TIFF: Fix possible use of NULL pointer. Fix memory leaks in writer.
TIM: Fix memory leak.
TOPOL: Fix possible use of NULL pointer. Fix memory leaks.
VIFF: Fix memory leak.
WEBP: Detect partial write to output file.
WPG: Fix possible use of null pointer. Fix excessive use of disk resources due to insufficient validations.
WriteImage(): Restore use of GetBlobStatus() to test if an I/O error was encountered while writing output file. This assures that I/O failure in writers which do not themselves verify writes is assured to be reported.
WMF: Memory use after free issues eliminated.
YUV: Fix memory leaks.
New Features:
PNG: Implemented eXIf chunk support.
WEBP: Add support for EXIF and ICC metadata provided that at least libwebp 0.5.0 is used.
Magick++ Image autoOrient(): New Image method to auto-orient an image so it looks right-side up by default.
Feature improvements:
None
Windows Delegate Updates/Additions:
Libtiff is updated to libtiff 4.0.9.
Build Changes:
JPEG/PNG: The SETJMP_IS_THREAD_SAFE definition is used to determine if setjmp/longjmp are thread safe. If these interfaces are thread safe, then concurrent reads/writes are possible. This definition is false for Solaris but true for Linux. JPEG and PNG will be fully concurrent if this definition is enabled.
Behavior Changes:
PALM: PALM writer is disabled.
ThrowLoggedException(): Capture the first exception at ErrorException level or greater, or only capture exception if it is more severe than an already reported exception.
DestroyJNG(): This internal function is now declared static and is removed from shared library or DLL namespace.

New in GraphicsMagick 1.3.26 (Jul 5, 2017)

Special Issues:
None
Security Fixes:
DPX: Fix excessive use of memory (DOS issue) due to file header claiming large image dimensions but insufficient backing data. (CVE-2017-10799).
JNG: Fix memory leak when reading invalid JNG image (CVE-2017-8350).
MAT: Fix excessive use of memory (DOS issue) due to continuing processing with insufficient data and claimed large image size. Verify each file extent to make sure that it is within range of file size. (CVE-2017-10800).
META: Fix heap overflow while parsing 8BIM chunk (CVE-2016-7800).
PCX: Fix denial of service issue.
RLE: Fix abnomally slow operation (denial of service issue) with intentionally corrupt colormapped file.
PICT: Fix possible buffer overflow vulnerability given suitably truncated input file.
PNG: Enforce spec requirement that the dimensions of the JPEG embedded in a JDAT chunk must match the JHDR dimensions (CVE-2016-9830).
PNG: Avoid NULL dereference when MAGN chunk processing fails.
SCT: Fix stack-buffer read overflow (underflow?) while reading SCT header.
SGI: Fix denial of service issues. Delay large memory allocations until file header has fully passed sanity checks.
TIFF: Fix out of bounds read when reading CMYKA TIFF which claims to have only 2 samples per pixel (CVE-2017-6335).
TIFF: Fix out of bounds read when reading RGB TIFF which claims to have only 1 sample per pixel (CVE-2017-10794).
WPG: Fix heap overflow (CVE-2016-7996). Fix assertion crash (CVE-2016-7997).
Bug fixes:
DifferenceImage(): Fix Fix all-black difference image if an input file is colormapped.
EXIF orientation was not being properly detected for some files.
-frame: The import command -frame handling was improperly implemented and was using already freed data.
GIF: Fixes for "Excessive LZW string data" problem.
Magick++: Bug fixes to PathSmoothCurvetoRel::operator() and PathSmoothCurvetoRel::operator().
PAM: Support writing GRAYSCALE PAM format.
PNG: Fix memory leaks.
SVG: Fixed a memory leak. Fixed a possible null pointer dereference.
TclMagick: Problem that TkMagick could not resolve functions from TclMagick under Linux is fixed.
TclMagick: Fix parser validatation in magickCmd() to avoid crash given a syntax error.
TIFF: Fix for reading old JPEG files (avoids "Improper call to JPEG library in state 0. (LibJpeg).").
TXT: Fixed memory leak.
XCF: Error checking is improved.
New Features:
EXIF rotation: Support is added such that the EXIF orientation tag is updated when the image is rotated.
MAT: Now support reading multiple images from Matlab V4 format.
Magick++: Orientation method now updates orientation in EXIF profile, if it exists.
Magick++: Added Image attribute method which accepts a 'char *' argument, and will remove the attribute if the value argument is NULL.
System Message: WARNING/2 (/home/bfriesen/src/graphics/GM/NEWS.txt, line 114); backlink
Inline emphasis start-string without end-string.
-orient: The -orient command line option now also updates the orientation in the EXIF profile, if it exists.
PGX: Support PGX JPEG 2000 format for reading and writing (within the bounds of what JasPer supports).
Wand API: Added MagickAutoOrientImage(), MagickGetImageOrientation(), MagickSetImageOrientation(), MagickRemoveImageOption(), and MagickClearException().
Feature improvements:
None
Windows Delegate Updates/Additions:
TIFF: Updated to libtiff 4.0.8.
Build Changes:
TclMagick: Updated configure to use latest TEA tcl.m4 version 3.10. Support for AM_DISTCHECK_CONFIGURE_FLAGS so that 'make distcheck' remembers configuration options, and also to uninstall pkgIndex.tcl.
VisualMagick Configure: A 'quantum' command line argument is added to set the default quantum depth in the wizard drop-down list. This This allows setting the quantum depth when the /nowizard argument was supplied.
Behavior Changes:
The installer for the Windows build no longer includes IMDisplay (simple display program), ImageMagickDLL, and PerlMagick for ActiveState Perl. These are still available to build from the source tree. All of these depend on proprietary components.

New in GraphicsMagick 1.3.25 (Sep 6, 2016)

SECURITY FIXES:
EscapeParenthesis(): I was notified by Gustavo Grieco of a heap overflow in EscapeParenthesis() used in the text annotation code. While not being able to reproduce the issue, the implementation of this function is completely redone.
Utah RLE: Reject truncated/absurd files which caused huge memory allocations and/or consumed huge CPU. Problem was reported by Agostino Sarubbo based on testing with AFL.
SVG/MVG: Fix another case of CVE-2016-2317 (heap buffer overflow) in the MVG rendering code (also impacts SVG).
TIFF: Fix heap buffer read overflow while copying sized TIFF attributes. Problem was reported by Agostino Sarubbo based on testing with AFL.
BUG FIXES:
GetToken(): Fix obscure bug (read beyond end of string buffer) noticed while parsing a MVG file. This problem was reported by Gustavo Grieco.
MVG rendering: Fix undesired hard errors when some objects were drawn outside of the image bounds. Requests to draw objects entirely outside of the image should be silently ignored.
MVG/SVG rendering: Fix gradient size sanity checks which were causing gradient requests to fail. Due to a design weakness in that gradient images allocate resources rather than being computations at point of use, the maximum gradient image size is now hard-limited to 5000x5000 pixels until the design problem is fixed. Some SVG icons (as small as 8x8 pixels) authored using Inkscape request absurdly huge gradients. Gradient sizes as large as 20,000x20,000 have been observed in SVG icon files delivered by packages on an Ubuntu Linux system.
SVG: Fix some memory leaks which occur on parsing error.
FEATURE IMPROVEMENTS:
ElapsedTime(): Use clock_gettime() (when available with default linkage) to obtain elapsed time.
DescribeImage(): Provide 6 digits of seconds precision in in elapsed time output. Previously the resolution was rounded up to a full second.
WINDOWS DELEGATE UPDATES:
webp: Updated bundled libwebp to release 0.5.1.
libxml: Updated bundled libxml2 to release 2.9.4.
lcms: Updated bundled lcms2 to release 2.8.
png: Update bundled libpng to release 1.6.24.
BUILD CHANGES:
OpenMP is properly configured for clang 3.8 using its own '-lomp' rather than '-lgomp'.
BEHAVIOR CHANGES:
SVG: Some SVG files may be rejected due to absurdly large gradient requests.
The 'identify' and 'info' functionality only shows the pixel read rate if image was not read in 'ping' mode. Provide 6 digits of seconds precision in in elapsed time output.

New in GraphicsMagick 1.3.24 (Sep 6, 2016)

SPEACIAL ISSUES:
A shell exploit (CVE-2016-5118) was discovered associated with a filename syntax where file names starting with '|' are intepreted as shell commands executed via popen(). Insufficient sanitization in the SVG and MVG renderers allows such filenames to be passed through from potentially untrusted files. There might be other ways for untrusted inputs to produce such filenames. Due to this issue, support for the feature is removed entirely.
A shell exploit was discovered associated with the gnuplot delegate and which is triggered by the 'gplt' entry in delegates.mgk. A remote exploit is possible if the attacker can cause a provided SVG or MVG file to be rendered (or the user opens a provided file). The gnuplot program must be installed in order for the exploit to be successful. It is strongly recommended to remove this entry in all delegates.mgk files.
Due to GCC bug 53967, several key agorithms (e.g. convolution) may execute much faster (e.g. 2-3X) for x86-64 and/or when SSE is enabled for floating point math (-mfpmath=sse) if the GCC option -frename-registers is used. Default 32-bit builds do not experience the problem since they use '387 math. It is not clear in what version of GCC this problem started but it was not noticed by the developers until the GCC 4.6 timeframe. Other compilers do not suffer from this bug. Please lobby the GCC project to fix this embarrassing performance bug.
SECURITY FIXES:
BLOB: Remove support for reading input from a shell command, or writing output to a shell command, by prefixing the specified filename (containing the command) with a '|'. This feature provided a remote shell execution opportunity.
DIB: Fixed out of bounds reads. Added more header validations.
JNG: File size limits are enforced.
MAT: Fixed denial of service opportunity. Fix hang on corrupt deflate stream.
META: Fixed out of bounds reads and writes.
MIFF: Fixed thrown assertion.
MSL: Ignore the file extension on MSL files. It is necessary to add a "msl:" prefix to MSL files to read the as an image.
MVG: No longer assume that files ending with extension ".mvg" are MVG files. MVG parsing does more validity checking on its input. Assure that enough PrimitiveInfo structures are allocated in advance to support a given vector path (heap overflow problem).
PCX: Fixed unreasonable memory allocation due to intentionally corrupt file.
PDB: Fixed a heap buffer overflow and out of bounds read.
PICT: Fixed an out of bounds write.
PS: Ghostscript is now always run with -dSAFER for safer execution.
PSD: Fixed segmentation violations, heap buffer overflows, and out of bounds writes.
RLE: Fixed out of bounds reads and writes.
ReadImages(): Fixed a possible infinite recursion due to a crafted input file.
RotateImage(): Fixed thrown assertion.
SGI: Fixed out of bounds writes.
SUN: Fixed out of bounds reads and writes.
SVG: Fixed heap and stack buffer overflows, as well as segmentation violations (CVE-2016-2317 and CVE-2016-2318). Also fixed endless loop, unexpectedly large memory allocation, divide by zero, and recursion issues.
TIFF: Fixed an assertion while reading. Fixed benign heap overflow.
TMP: Adding a "tmp:" prefix to a filename no longer removes the file since this seems dangerous.
VIFF: Fix excessive memory allocation with intentionally corrupted input file.
XCF: Fixed a heap buffer overflow.
XPM: Fixed several heap buffer overflows, and out of bound reads/writes. Also fixed a case of excessive memory allocation.
delegate.mgk: The default delegate.mgk file has been pared down in order to reduce security exposure.
gnuplot ('gplt' delegate in delegates.mgk): Support for rendering gnuplot files is removed since the format is inherently insecure.
File names: File names starting with a '|' character are no longer interpreted as shell commands to be executed as input or output.
BUG FIXES:
BMP: Fix reading 24-bit Microsoft BMP which claims to have a colormap.
FILE: file:// URLs are properly supported now (they never worked before).
JP2: It is now possible to write lossless JPEG 2000 "JP2" format.
SVG: Support font-size "medium".
NEW FEATURES:
Blob I/O C APIs: Added signed versions of short and long Read/Write functions.
FILE: file:// URLs are properly supported now (they never worked before).
MAT: Matlab V4 is now partially supported.
Magick++: Added double-precision xResolution() and yResolution() methods to support setting the horizontal and vertical resolution with double floating point precision.
Mogrify now supports a -preserve-timestamp option to preserve file access and modification timestamps.
FEATURE IMPROVEMENTS:
Windows Delegate Updates/Additions:
Updated bundled libpng to release 1.6.19.
Updated bundled libwebp to release 0.4.4.
Update bundled libxml2 to release 2.9.3.
Update bundled freetype to release 2.6.2.
BUILD CHANGES:
Added --enable-broken-coders configure option to enable file format support which may be broken or cause security issues. The PSD format is now classified as "broken" (until it is fixed).
BEHAVIOR CHANGES:
PSD format is not included in the build by default.
Files ending with ".mvg" and ".msl" are not assumed to be image files by default.
File names starting with '|' are no longer treated as shell commands.
Gnuplot and POV delegate support is removed from the default delegate.mgk file.

New in GraphicsMagick 1.3.23 (Nov 13, 2015)

New in GraphicsMagick 1.3.22 (Nov 6, 2015)

Coverity: We thank Coverity for providing free service for free software projects, and thank Jodie Cunningham for getting the project set up in Coverity.
Special Issues:
Due to GCC bug 53967, several key agorithms (e.g. convolution) may execute much faster (e.g. 2-3X) for x86-64 and/or when SSE is enabled for floating point math (-mfpmath=sse) if the GCC option -frename-registers is used. Default 32-bit builds do not experience the problem since they use '387 math. It is not clear in what version of GCC this problem started but it was not noticed by the developers until the GCC 4.6 timeframe. Other compilers do not suffer from this bug. Please lobby the GCC project to fix this embarrassing performance bug.
Magick++: Any libraries or applications using Magick++ should be rebuilt in order to use this new release. Libraries and applications will be able to continue to use prior versions of Magick++ without being re-built, while benefiting from updated C libraries, provided that the system supports library versioning.
Security Fixes:
General Coverity fixes. Some might have security consequences.
Ghostscript options concatenation is more secure against buffer overflow.
Windows: Built-in random number generator is now salted using CryptGenRandom(). This improves the robustness of the temporary file allocator.
Bug fixes:
Coverity Fixes: Large amounts of fixes due to Coverity static analysis. See the ChangeLog and Mercurial for details. Coverity now reports zero issues.
General: Fix problems with reading filenames that include a colon.
General: Fixed performance problem with sub-image path extraction when there are many files in the directory.
General: Add missing options in utility help messages.
BMP: Reader was wrongly rejecting RLE-compressed files as being too small (regression added in 1.3.21 release).
BMP: Fix inverted alpha channel when writing BGRA8888 format.
DrawAffineImage(): Fix problem with negative x offset.
DrawAffineImage(): Fix problem that sometimes output rows are skipped when using OpenMP.
EXIF: Properly validate GPS_OFFSET.
-format: %Q now reports JPEG quality estimate if it is available.
-geometry: Fix handling of area geometries in the form "5000000@".
MagickGetImageGravity(): Prototype was missing in header files.
MIFF: Memory leak fixes.
MIFF: MIFF reader failed to read some MIFF headers properly.
MIFF: Detect buffer overrun attempt while reading zip compressed data.
PDF: Set image frame scene ids appropriately.
PNG: Memory leak fixes.
PS: Set image frame scene ids appropriately.
PTIF: Mark reduced frames as SubfileType 0x2 instead of 0x1.
SetImageProfile(): Avoid crash given NULL profile pointer.
TIFF: Fix reading Old JPEG and YCbCr sample images from libtiff pics-3.8.0.tar.gz image file collection.
TIFF: Disable matte channel for compression types which don't support it.
XPM: Memory leak fixes.
XWD: Memory leak fixes.
New Features:
GRAYA: New subformat for gray coder which supports alpha channel. Format specifiers "R", "G", "B", "A", "C", "M", and "Y" may now be used to save and restore the associated channel using the same raw format as "GRAY".
Magick++: Image::repage() method added to support resetting 'page'.
PDF: Added '-define pdf:stop-on-error=true' optoin to cause PDF reading to quit immediately upon any error.
Subframe specification: Now specific PS and PDF pages may be selected, including re-ordering.
Feature improvements:
PALM: Still a work in progress. Closer to working using netpbm's implementation as a reference.
Windows Delegate Updates/Additions:
dcraw: Update bundled dcraw to release 9.26.0.
lcms: Update bundled lcms2 to release 2.7.
png: Updated bundled libpng to release 1.6.17.
tiff: Update bundled libtiff to release 4.0.6.
ttf: Update bundled freetype to release 2.6.
webp: Updated bundled libwebp to release 0.4.3.
libxml: Update bundled libxml2 to release 2.9.2.
Build Changes:
lcms ("Little CMS") v1 is no longer supported.
VisualMagick: Remember and re-use already given paths.
Behavior Changes:
Magick++: adaptiveThreshold() now accepts a 'double' value and the previous version of the method (using 'unsigned int') is deprecated. The STL function-object equivalent of the deprecated method is removed entirely.

New in GraphicsMagick 1.3.21 (Mar 25, 2015)

Special Issues:
Due to GCC bug 53967, several key agorithms (e.g. convolution) may execute much faster (e.g. 2-3X) for x86-64 and/or when SSE is enabled for floating point math (-mfpmath=sse) if the GCC option -frename-registers is used. Default 32-bit builds do not experience the problem since they use '387 math. It is not clear in what version of GCC this problem started but it was not noticed by the developers until the GCC 4.6 timeframe. Other compilers do not suffer from this bug. Please lobby the GCC project to fix this embarrassing performance bug.
Magick++: Any libraries or applications using Magick++ should be rebuilt in order to use this new release. Libraries and applications will be able to continue to use prior versions of Magick++ without being re-built, while benefiting from updated C libraries, provided that the system supports library versioning.
Security Fixes:
Annotate: Some requestable text-subsitution attributes caused a crash.
All formats: Image dimensions are checked to assure that they are within limits before proceeding to read the image.
BMP: Fix hang (endless loop) for certain files.
DCM: Fix crash as well as small heap over-write.
DPX: Fix crash due to DPX file reporting more elements than it has.
MNG: Validate MHDR chunk length to avoid huge memory allocation and DOS.
PCX: Fix for CVE-2014-8355. Validate file header in order to avoid buffer overun later.
PDB: Detect arithmetic overflows when calculating buffer sizes. Fix crash in writer when image width is not even multiple of 16. Fix buffer overrun with 2 and 4-bit PDB image files.
PNM: Validate PGM, PPM, and PAM header MaxValue parameter to avoid crash on poorly-formed input.
PNG: Impose a 10-million limit on dimensions when reading a PNG file to avoid denial of service.
PSD: Avoid problems caused by huge PSD colormap size.
PSD: Fix small stack over-write if more than 99 layers are written to PSD format.
PSD: Returns immediately if pixel limit was exceeded.
RLE: URT RLE reader is now more robust with errant files.
SUN: Header validation is now made fully robust, and arithmetic overflows in buffer-size calculations are detected to avoid heap overwrite.
TIFF: Fix crashes for photometrics which may delivery one or three samples per pixel (was assuming always three).
VIFF: Fixes to prevent buffer overflow. Validate colormap indexes.
Windows delegates: Fix unexpected argument splitting when invoking an external delegate program via delegates.mgk.
WPG: Fix use of NULL pointers. Fix buffer overflows.
XPM: Detect truncated row and quit with error rather than over-running a buffer.
XWD: Improve header validation. Added to UnstableCoderClass since the reader for this format should not be entrusted with untrustworthy input.
Bug fixes:
CIN: Fix problem with text attribute values which are not NULL terminated. Validate sizes claimed by Cineon header.
Coverity: Fixes for many issues detected by Coverity scan (see ChangeLog).
DPX: Fix problem with text attribute values which are not NULL terminated.
DPX: Fix severe corruption of little-endian 32-bit packed output. Corruption was severe enough that it would have been noticed immediately.
Delegates: Fix possible memory leaks when invoking external application.
FITS: Properly validate values provided by file header.
GIF: Fix use of uninitialized data.
JBIG: Fix memory leaks.
JNG: Fix double-free error in error path.
JPEG: Verify the number of output components before attempting to decode the image.
Magick++: Image resolutionUnits() was not always returning correct value.
Magick++: Locking has not been working properly since the code was written in 1998. Apparently the issue has not been significant enough to cause run-time issues.
ICO: Windows icon reader is now much more robust.
MIFF: Reader now quits with an error if zip or bzip2 stream is corrupted.
MAT: Fix memory leaks.
PALM: Reader now reads various input formats (up to version 2) correctly whereas it was crashing or otherwise malfunctioning before. More work remains, particularly in the writer.
PCX: Eliminate memory leaks in error paths.
PDB: In PDB writer, void possible under-allocation due to arthimetic overflow when allocating packets.
PICT: Fix PICT reader crash with corrupted file.
PNG: Fix double-free error in error path.
PNG: Fixed handling of transparency when writing indexed PNG.
PNG: Avoid reading beyond the end of a tEXt keyword.
PSD: Fix error when reading PSDs files which have no layers.
RLA: Fix possible crash due to file header.
Signal Handling: Signal handling is now more robust and handles SIGSEGV and other critical signals. The sole purpose of the default signal handling is to remove any temporary files and quit. An informative message is printed for signals other than SIGINT.
SUN: Sun raster reader was not completely robust. Now it is.
SWF: Fix pixel cache access errors in 'ping' mode.
Text annotation: An empty text string is no longer treated as an error.
Text annotation: Fix regression added in 1.3.19 which caused spurious drawing errors to be produced while rendering with text when all of the text is off the left-hand side of the image.
TIFF: Fix unreliable reading JBIG compressed files by forcing use of strip reader rather than sometimes using scanline reader (which libtiff's JBIG codec does not support).
TIFF: Fix reading or writing planar min-is-white or min-is-black images with an associated alpha channel.
WebP: WebP writer now writes truely lossless output when requested.
identify / GetImageStatistics(): Failed to compute statistics for the Black channel of CMYK image files.
VICAR: Fix problem with continuing to "read" data when there is no more data left to read.
WMF: Fix memory leaks.
WPG: Fix potential DOS due to long reads during an error condition.
XPM: Avoid strncpy() of overlapping memory. Fixed memory leaks in error paths. Fixed bad memory access caused by empty file.
New Features:
compose: Supports composite operator names similar to the major *Magick brand, without losing any any compatibility with previous naming.
ICO: Windows ICO reader now supports reading PNG-encoded files.
Magick++ Geometry: New methods limitPixels() and fillArea() to support '@' and '^' geometry qualifiers. This enancement breaks the ABI due to previous use of inline methods and no place to put the new flags.
Magick++ Image::extent(): New method to place image on sized canvas of constant color using gravity.
Magick++ Image::formatExpression(): New method format a string based on a format similar to command-line -format.
Magick++ Image::resize(): New method to resize image specifying geometry, filter, and blur.
Magick++ STL extentImage: New New function object to invoke image extent method.
Magick++ Image::quiet(). New method which blocks (ignores) warning exceptions when passed a 'true' argument.
Resource limits: Added support for image Width and Height limits. Default image Width and Height limits are based on the range of a 32-bit signed integer, even for 64-bit builds which may have sufficient numeric range to image an entire galaxy. Limits may be increased as desired.
TIFF: Use define tiff:ignore-tags to ignore tags in 'corrupted' files with unknown and invalid tags. Use to read TIFF files which otherwise can not be read due to errors.
TIFF: Use '-define tiff:report-warnings=true' to enable that warnings reported by libtiff are thrown as warning exceptions so that they may be caught or will be reported at the gm command-line.
Windows Exceptions: A handler is registered (due to calling InitializeMagick()) to capture Windows Exceptions in a similar manner to the existing POSIX signal handler. If an application is using the library and wants to provide it own Windows exception handling, then it should make any changes after invoking InitializeMagick().
Windows Delegate Updates/Additions:
PNG: Update bundled libpng to 1.6.16. Resolves known security issues.
FreeType: Update bundled Freetype to 2.5.4. Resolves known security issues.
WebP: Update bundled WebP to 0.4.2 release.
WebP is auto-linked in Visual Studio.
Build Changes:
WebP is not included in the build when building with Visual Studio 6 (1998 vintage compiler!) since it requires more modern C.
Behavior Changes:
AVI: Support for this format is removed since the implementation was worthless.
TIFF: Now uses YCbCr encoding when JPEG compression is requested for an RGB image.

New in GraphicsMagick 1.3.20 (Aug 18, 2014)

New in GraphicsMagick 1.3.19 (Jan 9, 2014)

Security Fixes:
EPT: Fix crash observed when Ghostscript fails to produce useful output. This was particularly noticeable when Ghostscript was not installed. This crash could be used to cause denial of service.
PNG: With libpng 1.6.X, avoid a crash while copying a PNG with a "known incorrect ICC profile". This crash could be used to cause denial of service.
Bug fixes:
Build: Fix cross-compilation for MinGW64 on Linux build machine.
Build: configure FreeType test no longer insists that can be included.
CMS profile: Only delete the CMS transform if it is non-null. Fixes assersion observed when lcms returned a null profile and GraphicsMagick attempted to deallocate it.
Drawing: Improve error handling logic so that drawing returns quickly on pixel access errors rather than plowing on ahead. This avoids problems with SVGs which take seemingly forever to render.
Drawing via C/C++ APIs: BevelJoin no longer causes a MVG parsing error.
EPT: Fix crash observed when Ghostscript fails to produce useful output. This was particularly noticeable when Ghostscript was not installed.
OpenMP: Revert use of omp_set_dynamic() since it caused performance issues when using GCC's GOMP implementation and the number of threads to use is specified.
EXIF profile: Support the SubjectArea EXIF tag.
MIFF writer: PseudoClass format was written incorrectly for depth greater than 8.
MIFF writer: RLE compressed format used inverted alpha from the other subformats and contrary to the MIFF specification.
MIFF reader: Fixes Fixes to be able to read MIFF written by ImageMagick 6.X, including DirectClass grayscale images (except for RLE compressed).
Mosaic: Fixed unsigned underflow problem with -mosaic when page offset is negative and exceeds image width or height, resulting in assertions, out of memory errors, or pixel cache limit errors.
PDF: Consistently initialize Image page width and height to image width and height. While general to all of GraphicsMagick, this change is to assure that the PDF writer computes page dimensioning consistently. PDF page dimensioning was wrong if the image had been resized with -geometry "100%".
PAM: Fix MAXVAL scaling when reading PAM images. PAM was only working correctly for images with 256 or 64k levels.
PNM: PGM "P2" format writer wrote bad output for 8-bit depth.
PNG: With libpng 1.6.X, avoid a crash while copying a PNG with a "known incorrect ICC profile".
PNG: Q8 GM build now correctly reads 16-bit PNG files.
TIFF writer: Try to avoid writing more than 32k strips per image by increasing rows-per-strip since some programs fail to read images with more than 32k strips per image.
TIM reader: PSX TIM reports 8-bit depth (rather than 16).
TTF font rendering: Improve FreeType rendering error logic so that rendering returns immediately on pixel access errors rather than plowing on ahead.
TTF font rendering: Support rendering UTF-8 up to 21-bit code points. Was only supporting 16-bit code points.
Wand API: DrawSetStrokeDashArray() / DrawGetStrokeDashArray(), fix failure to work properly due to this code path never being tested.
Windows Ghostscript: 64-bit GraphicsMagick no longer requires both 32-bit and 64-bit builds of Ghostscript to be installed in order to read Postscript and PDF formats.
XPM reader: Reported depth now depends on the colormap rather than always claiming to be 16-bit.
New Features:
JPEG: Add support for writing 'XMP' profile.
PNM: As a simple non-standard extension to the standard PNM and PAM formats, support writing and reading 32-bit sample depth. Writing such files is only supported by the Q32 build although they may be read by any build.
WebP: Now supports reading and writing Google's WebP format. This feature is not currently supported by the Windows Visual Studio build.
Feature improvements:
Pixel composition based on BlendCompositePixel() is enhanced to completely eliminate under-color from the blending if the under-pixel is fully transparent. Also blends based on the average opacity of both pixels rather than only the over-pixel. This change did not result in any change in the GM test suite results but it is possible that there could be some negative impact from it. Please report any issues noticed which are due to this change.
X11 display: For DirectClass image, use ThumbnailImage() rather than SampleImage() when creating the panner icon to improve the quality of the image.
Performance Improvements:
PNG: ping a PNG faster by avoiding reading the image data.
Windows Delegate Updates:
Updated IJG JPEG library to release 9.
Updated PNG library to release 1.6.8.
Updated lcms2 library to release 2.5.
Updated libxml2 library to release 2.9.1.
Updated FreeType library to release 2.5.2.
Behavior Changes:
MIFF: Now writes PseudoClass images correctly when depth is greater than 8. This impacts the reader, which will not be able to read previously written incorrect format correctly. Images like this should be very rare. The solution is to use an older GraphicsMagick version to convert such images to a valid storage format (with a depth of 8) so that they may be read with this version.
MIFF: Now writes RLE-compressed RGBA images with correct alpha. This impacts the reader, which will not be able to read previously written incorrect format correctly. Images like this should be very rare. A solution is to use an older GraphicsMagick version to use a compression algorithm other than RLE so that they are read correctly with this version. Another solution is to process problematic images with '-operator Opacity Negate 0' to invert the alpha channel.
TIFF: Returns DirectClass images by default for MINISWHITE and MINISBLACK TIFF formats (rather then colormapped).
Windows: Also search c:gsfonts for Ghostscript font files. This search path is normally hard-coded into Ghostscript binaries and is a convenient place to put fonts so they may be shared by multiple Ghostscript versions.
XPM: Now limits color resolution to 16-bits, even with Q32 build.

New in GraphicsMagick 1.3.18 (Apr 10, 2013)

Special Issues:
Due to GCC bug 53967, several key algorithms (e.g. convolution) may execute much faster (e.g. 2-3X) for x86-64 and/or when SSE is enabled for floating point math (-mfpmath=sse) if the GCC option -frename-registers is used. Default 32-bit builds do not experience the problem since they use '387 math. It is not clear in what version of GCC this problem started but it was not noticed by the developers until the GCC 4.6 timeframe. Other compilers do not suffer from this bug.
Bug fixes:
Fixed bug with format substitutions if input string ends with a single '%'.
BMP: Fixed an old bug with decoding chromaticity primaries.
PNG: Fixed reading of interlaced images. Fix reading of sub-8-bit palette and grayscale images. Some PNG sub-formats were written incorrectly. Fix crash in PNG8 writer if image colors happened to be non-zero but image was not actually colormapped.
PNG: Configure script now also searches for libpng versions 16 and 17.
TIFF: Fix a crash which was noticed when writing RGBA separated (planar) format.
--enable-symbol-prefix was not prefixing all of the C symbols. Some core C library functions were not prefixed. This option applies to the Wand library API as well now.
C API: When input is from a user-provided file descriptor, the file position is restored after reading the file header bytes. Previously the file position was rewound to the beginning of the file. This allows reading embedded image data from the current offset in a file, and allows continuing to use the stream after GraphicsMagick has returned the image.
C API: It is now possible to invoke CloseBlob() multiple times.
display: Display was supposed to respond to +/-usePixmap, but was not. It was responding to +/-use_pixmap. Now it responds to both.
Windows/VisualMagick: Fix building GraphicsMagick with Intel ICC compiler driven by Visual Studio Professional 2012.
Windows: Avoid a crash and produce a useful diagnostic if Ghostscript is needed but not yet installed.
New Features:
GM utility: New 'batch' command was contributed by Kenneth Xu which supports executing any number of other GM utility sub-commands in a single invokation in a sort of "batch" script. Input may be piped from standard input, from a specified file, or from a 'GM >' command prompt. This utilities front-end allows any other program/script to drive 'gm' using a co-process model and speeds up execution by eliminating utility start-up/shut-down time.
WIN64 (64-bit Windows): Windows 64-bit is now officially supported.
convert/mogrify: Now support -auto-orient to automatically rotate the image upright for viewing based on its current orientation setting. Also support -orient to support setting the current image orientation. Please note that the orientation property of EXIF profiles is not yet updated so the EXIF profile will be wrong after using -auto-orient.
C API: AutoOrientImage(), new New function to automatically orient the image so that it is upright for normal viewing.
Wand API: MagickGetImagePage()/MagickSetImagePage(), new functions to support getting and setting the image page size and offsets.
PNG: Added PNG48 and PNG64 support. Added PNG00 support (png encoder that inherits its color-type and bit-depth from the input, if the input was a PNG datastream).
Feature improvements:
GraphicsMagick TAP tests may now be run stand-alone using Perl's 'prove' TAP test driver.
Performance Improvements:
Detection of glob specifications in file names is more efficient.
Behavior Changes:
ltdl: Libltdl is no longer bundled. Libltdl must be previously installed on the system in order to build the modules configuration.
AppendImages() now converts subsequent images to the colorspace of the first image, and no longer converts the first image to RGB. Instead, it is assumed the user knows what she is doing.
SetImageColorRegion() no longer automatically converts the image to RGB. The user is responsible for assuring that the provided color is in the same colorspace as the image.

GraphicsMagick Changelog

What's new in GraphicsMagick 1.3.43

New in GraphicsMagick 1.3.42 (Sep 24, 2023)

New in GraphicsMagick 1.3.41 (Aug 13, 2023)

New in GraphicsMagick 1.3.35 (Feb 23, 2020)

New in GraphicsMagick 1.3.34 (Dec 24, 2019)

New in GraphicsMagick 1.3.32 (Jun 16, 2019)

New in GraphicsMagick 1.3.31 (Nov 18, 2018)

New in GraphicsMagick 1.3.30 (Jun 24, 2018)

New in GraphicsMagick 1.3.29 (Apr 30, 2018)

New in GraphicsMagick 1.3.28 (Jan 21, 2018)

New in GraphicsMagick 1.3.27 (Dec 11, 2017)

New in GraphicsMagick 1.3.26 (Jul 5, 2017)

New in GraphicsMagick 1.3.25 (Sep 6, 2016)

New in GraphicsMagick 1.3.24 (Sep 6, 2016)

New in GraphicsMagick 1.3.23 (Nov 13, 2015)

New in GraphicsMagick 1.3.22 (Nov 6, 2015)

New in GraphicsMagick 1.3.21 (Mar 25, 2015)

New in GraphicsMagick 1.3.20 (Aug 18, 2014)

New in GraphicsMagick 1.3.19 (Jan 9, 2014)

New in GraphicsMagick 1.3.18 (Apr 10, 2013)

New in GraphicsMagick 1.3.7 Q8 (Sep 23, 2009)