[ubuntu/hardy-security] libgd2 2.0.35.dfsg-3ubuntu2.1 (Accepted)

Ubuntu Installer archive at ubuntu.com
Thu Nov 5 19:03:52 GMT 2009


libgd2 (2.0.35.dfsg-3ubuntu2.1) hardy-security; urgency=low

  * SECURITY UPDATE: denial of service and possible code execution via GD
    file with large number of colors
    - debian/patches/9000_security_CVE-2009-3546.patch: make sure number of
      colors specified in gd file isn't bigger than gdMaxColors in gd_gd.c.
    - CVE-2009-3546

Date: Wed, 04 Nov 2009 09:42:29 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/hardy/+source/libgd2/2.0.35.dfsg-3ubuntu2.1
-------------- next part --------------
Format: 1.7
Date: Wed, 04 Nov 2009 09:42:29 -0500
Source: libgd2
Binary: libgd-tools libgd2-xpm-dev libgd2-noxpm-dev libgd2-xpm libgd2-noxpm
Architecture: source
Version: 2.0.35.dfsg-3ubuntu2.1
Distribution: hardy-security
Urgency: low
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 libgd-tools - GD command line tools and example code
 libgd2-noxpm - GD Graphics Library version 2 (without XPM support)
 libgd2-noxpm-dev - GD Graphics Library version 2 (development version)
 libgd2-xpm - GD Graphics Library version 2
 libgd2-xpm-dev - GD Graphics Library version 2 (development version)
Changes: 
 libgd2 (2.0.35.dfsg-3ubuntu2.1) hardy-security; urgency=low
 .
   * SECURITY UPDATE: denial of service and possible code execution via GD
     file with large number of colors
     - debian/patches/9000_security_CVE-2009-3546.patch: make sure number of
       colors specified in gd file isn't bigger than gdMaxColors in gd_gd.c.
     - CVE-2009-3546
Files: 
 84af33aef5005c99f753b91d9a7320ab 1164 graphics optional libgd2_2.0.35.dfsg-3ubuntu2.1.dsc
 45adf128acd808dabf385651895aa09e 27319 graphics optional libgd2_2.0.35.dfsg-3ubuntu2.1.diff.gz
Original-Maintainer: GD team <pkg-gd-devel at lists.alioth.debian.org>


More information about the Hardy-changes mailing list