[ubuntu/yakkety-proposed] libgd2 2.2.1-1ubuntu1 (Accepted)
Marc Deslauriers
marc.deslauriers at ubuntu.com
Fri Jul 8 18:30:19 UTC 2016
libgd2 (2.2.1-1ubuntu1) yakkety; urgency=medium
* SECURITY UPDATE: integer overflow in _gd2GetHeader()
- debian/patches/CVE-2016-5766.patch: check for overflow in
src/gd_gd2.c.
- CVE-2016-5766
* SECURITY UPDATE: denial of service via invalid color index
- debian/patches/CVE-2016-6128.patch: check color index in
src/gd_crop.c, added test to tests/CMakeLists.txt, tests/Makefile.am,
tests/gdimagecrop/.gitignore, tests/gdimagecrop/CMakeLists.txt,
tests/gdimagecrop/Makemodule.am, tests/gdimagecrop/php_bug_72494.c.
- CVE-2016-6128
Date: Fri, 08 Jul 2016 14:05:30 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/libgd2/2.2.1-1ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Fri, 08 Jul 2016 14:05:30 -0400
Source: libgd2
Binary: libgd-tools libgd-dev libgd3 libgd-dbg
Architecture: source
Version: 2.2.1-1ubuntu1
Distribution: yakkety
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
libgd-dbg - Debug symbols for GD Graphics Library
libgd-dev - GD Graphics Library (development version)
libgd-tools - GD command line tools and example code
libgd3 - GD Graphics Library
Changes:
libgd2 (2.2.1-1ubuntu1) yakkety; urgency=medium
.
* SECURITY UPDATE: integer overflow in _gd2GetHeader()
- debian/patches/CVE-2016-5766.patch: check for overflow in
src/gd_gd2.c.
- CVE-2016-5766
* SECURITY UPDATE: denial of service via invalid color index
- debian/patches/CVE-2016-6128.patch: check color index in
src/gd_crop.c, added test to tests/CMakeLists.txt, tests/Makefile.am,
tests/gdimagecrop/.gitignore, tests/gdimagecrop/CMakeLists.txt,
tests/gdimagecrop/Makemodule.am, tests/gdimagecrop/php_bug_72494.c.
- CVE-2016-6128
Checksums-Sha1:
4805afb9ed3cdf5812f010194b524aecd82d88fa 2303 libgd2_2.2.1-1ubuntu1.dsc
8b043b973dc1ce73fe46fe56f67d4033f9db713e 24568 libgd2_2.2.1-1ubuntu1.debian.tar.xz
Checksums-Sha256:
594a219be2a5b8c39a4debb1c291ba353ceaaa0fe1f9838f24ff5e5da1f28848 2303 libgd2_2.2.1-1ubuntu1.dsc
1ac8902d44bef0b5bd9b46afaddc428d811ddfa764bfaf4351abf0760402ea4d 24568 libgd2_2.2.1-1ubuntu1.debian.tar.xz
Files:
584a108c1696a2935d24db8edc3aa236 2303 graphics optional libgd2_2.2.1-1ubuntu1.dsc
6a333fa7a1ab4a3d00946f16a2e71c09 24568 graphics optional libgd2_2.2.1-1ubuntu1.debian.tar.xz
Original-Maintainer: GD team <pkg-gd-devel at lists.alioth.debian.org>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=tyCH
-----END PGP SIGNATURE-----
More information about the Yakkety-changes
mailing list