[ubuntu/eoan-proposed] giflib 5.1.4-3ubuntu1 (Accepted)
Leonidas S. Barbosa
leo.barbosa at canonical.com
Tue Aug 20 18:00:12 UTC 2019
giflib (5.1.4-3ubuntu1) eoan; urgency=medium
* SECURITY UPDATE: Denial of service
- debian/patches/CVE-2018-11490.patch: adding checks
in DGifDecompressLine in order to avoid a heap buffer overflow and
a denial of service in lib/dgif_lib.c.
- CVE-2018-11490
* SECURITY UPDATE: Divide-by-zero
- debian/patches/CVE-2019-15133.patch: adding checks bounds
in lib/dgif_lib.c.
- CVE-2019-15133
Date: Mon, 19 Aug 2019 15:57:38 -0300
Changed-By: leo.barbosa at canonical.com (Leonidas S. Barbosa)
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/giflib/5.1.4-3ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Mon, 19 Aug 2019 15:57:38 -0300
Source: giflib
Architecture: source
Version: 5.1.4-3ubuntu1
Distribution: eoan
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Leonidas S. Barbosa <leo.barbosa at canonical.com>
Changes:
giflib (5.1.4-3ubuntu1) eoan; urgency=medium
.
* SECURITY UPDATE: Denial of service
- debian/patches/CVE-2018-11490.patch: adding checks
in DGifDecompressLine in order to avoid a heap buffer overflow and
a denial of service in lib/dgif_lib.c.
- CVE-2018-11490
* SECURITY UPDATE: Divide-by-zero
- debian/patches/CVE-2019-15133.patch: adding checks bounds
in lib/dgif_lib.c.
- CVE-2019-15133
Checksums-Sha1:
b2ddf12d19fc3458a652b8eff1f77312eb24f2d6 2026 giflib_5.1.4-3ubuntu1.dsc
8694643b52ad40abe4da68320bcf508dfcd020f4 8496 giflib_5.1.4-3ubuntu1.debian.tar.xz
0c57fda538aabab9e3cdfff972236a4013aa38c9 5776 giflib_5.1.4-3ubuntu1_source.buildinfo
Checksums-Sha256:
947bdefc5e45b614224931cf38f92d49437ff3bb6ec84f7b09c9756851444157 2026 giflib_5.1.4-3ubuntu1.dsc
fed7670a479b589c246ba268bd7eb1d2363332a8faa5944c575653712d64b084 8496 giflib_5.1.4-3ubuntu1.debian.tar.xz
d74f77b0757ab0523eeea5f7b187f9153545afb8e588a8ed09b8524560f97a01 5776 giflib_5.1.4-3ubuntu1_source.buildinfo
Files:
6f297c3bb4114ea4d681eb8f9b2296b1 2026 libs optional giflib_5.1.4-3ubuntu1.dsc
e65cd6925452dfe038210b8b74c0229b 8496 libs optional giflib_5.1.4-3ubuntu1.debian.tar.xz
dddef6446aadfaef5cc0dee97d440226 5776 libs optional giflib_5.1.4-3ubuntu1_source.buildinfo
Original-Maintainer: Debian QA Group <packages at qa.debian.org>
-----BEGIN PGP SIGNATURE-----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=+OQk
-----END PGP SIGNATURE-----
More information about the Eoan-changes
mailing list