Accepted libgd 1.8.4-36ubuntu2 (source)
Martin Pitt
martin.pitt at canonical.com
Mon Nov 29 16:15:03 CST 2004
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Mon, 29 Nov 2004 20:49:00 +0100
Source: libgd
Binary: libgd-dev libgd-noxpm-dev libgd1 libgd1-noxpm libgd-xpm-dev libgd1-xpm
Architecture: source
Version: 1.8.4-36ubuntu2
Distribution: hoary
Urgency: low
Maintainer: Jonas Smedegaard <dr at jones.dk>
Changed-By: Martin Pitt <martin.pitt at canonical.com>
Description:
libgd-dev - GD Graphics Library (transitional package)
libgd-noxpm-dev - GD Graphics Library (old version, without XPM support)
libgd-xpm-dev - GD Graphics Library (old version)
libgd1 - GD Graphics Library (transitional package)
libgd1-noxpm - GD Graphics Library (old version, without XPM support)
libgd1-xpm - GD Graphics Library (old version)
Changes:
libgd (1.8.4-36ubuntu2) hoary; urgency=low
.
* SECURITY UPDATE: fix even more potential buffer overflows
* gd.c, wbmp.c, gd_gd.c, gd_io_dp.c, gdxpm.c: add overflow and failed malloc
protections to prevent buffer overflows that could lead to arbitrary code
execution
* gd_png.c: added missing free()
* References:
CAN-2004-0941
Files:
6f83007b31fbbff422253a0b2fccbed7 771 oldlibs optional libgd_1.8.4-36ubuntu2.dsc
d46d4341b983c1196ec7e57167320252 12358 oldlibs optional libgd_1.8.4-36ubuntu2.diff.gz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)
iD8DBQFBq530DecnbV4Fd/IRArqzAJ994/MeMQPPGA0F9tKctaH88GS2/gCdGjMV
JpNooKjf3VKI0FTbGzkys14=
=F7pi
-----END PGP SIGNATURE-----
Accepted:
libgd_1.8.4-36ubuntu2.diff.gz
to pool/main/libg/libgd/libgd_1.8.4-36ubuntu2.diff.gz
libgd_1.8.4-36ubuntu2.dsc
to pool/main/libg/libgd/libgd_1.8.4-36ubuntu2.dsc
More information about the hoary-changes
mailing list