[ubuntu/eoan-proposed] giflib 5.1.4-3ubuntu1 (Accepted)

Leonidas S. Barbosa leo.barbosa at canonical.com
Tue Aug 20 18:00:12 UTC 2019 

giflib (5.1.4-3ubuntu1) eoan; urgency=medium

  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2018-11490.patch: adding checks
      in DGifDecompressLine in order to avoid a heap buffer overflow and
      a denial of service in lib/dgif_lib.c.
    - CVE-2018-11490
  * SECURITY UPDATE: Divide-by-zero
    - debian/patches/CVE-2019-15133.patch: adding checks bounds
      in lib/dgif_lib.c.
    - CVE-2019-15133

Date: Mon, 19 Aug 2019 15:57:38 -0300
Changed-By: leo.barbosa at canonical.com (Leonidas S. Barbosa)
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/giflib/5.1.4-3ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 19 Aug 2019 15:57:38 -0300
Source: giflib
Architecture: source
Version: 5.1.4-3ubuntu1
Distribution: eoan
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Leonidas S. Barbosa <leo.barbosa at canonical.com>
Changes:
 giflib (5.1.4-3ubuntu1) eoan; urgency=medium
 .
   * SECURITY UPDATE: Denial of service
     - debian/patches/CVE-2018-11490.patch: adding checks
       in DGifDecompressLine in order to avoid a heap buffer overflow and
       a denial of service in lib/dgif_lib.c.
     - CVE-2018-11490
   * SECURITY UPDATE: Divide-by-zero
     - debian/patches/CVE-2019-15133.patch: adding checks bounds
       in lib/dgif_lib.c.
     - CVE-2019-15133
Checksums-Sha1:
 b2ddf12d19fc3458a652b8eff1f77312eb24f2d6 2026 giflib_5.1.4-3ubuntu1.dsc
 8694643b52ad40abe4da68320bcf508dfcd020f4 8496 giflib_5.1.4-3ubuntu1.debian.tar.xz
 0c57fda538aabab9e3cdfff972236a4013aa38c9 5776 giflib_5.1.4-3ubuntu1_source.buildinfo
Checksums-Sha256:
 947bdefc5e45b614224931cf38f92d49437ff3bb6ec84f7b09c9756851444157 2026 giflib_5.1.4-3ubuntu1.dsc
 fed7670a479b589c246ba268bd7eb1d2363332a8faa5944c575653712d64b084 8496 giflib_5.1.4-3ubuntu1.debian.tar.xz
 d74f77b0757ab0523eeea5f7b187f9153545afb8e588a8ed09b8524560f97a01 5776 giflib_5.1.4-3ubuntu1_source.buildinfo
Files:
 6f297c3bb4114ea4d681eb8f9b2296b1 2026 libs optional giflib_5.1.4-3ubuntu1.dsc
 e65cd6925452dfe038210b8b74c0229b 8496 libs optional giflib_5.1.4-3ubuntu1.debian.tar.xz
 dddef6446aadfaef5cc0dee97d440226 5776 libs optional giflib_5.1.4-3ubuntu1_source.buildinfo
Original-Maintainer: Debian QA Group <packages at qa.debian.org>

-----BEGIN PGP SIGNATURE-----
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=+OQk
-----END PGP SIGNATURE-----

More information about the Eoan-changes mailing list